3ee061b0859a0ccc9a99d1b33ee6a16beb1828a308a610c6311b3a6d6c1f6d8b | Triage

Submit
Reports

Overview

overview

Static

static

setup(1).exe

windows7_x64

setup(1).exe

windows10_x64

Sharing

General

Target

setup(1).exe
Size

283KB
Sample

210727-kn2bc9rk86
MD5

a87f53d5aa35baa8e387d757224e2909
SHA1

76ebf1d2944c169eb024a57ba445bf3c5fed9ed4
SHA256

3ee061b0859a0ccc9a99d1b33ee6a16beb1828a308a610c6311b3a6d6c1f6d8b
SHA512

889426c71e57203851f51dd27d489b07839ad4d4712b9f62287bc665aa725898ecc2e7cd74129adafd29cbb5c664b5cd09f80623ba80c88db8abd8cfc0d5847a

Score

10^/10

suricata

Static task

static1

Behavioral task

behavioral1

Sample

setup(1).exe

Resource

win7v20210410

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

setup(1).exe

Resource

win10v20210408

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  setup(1).exe
- Size
  
  283KB
- MD5
  
  a87f53d5aa35baa8e387d757224e2909
- SHA1
  
  76ebf1d2944c169eb024a57ba445bf3c5fed9ed4
- SHA256
  
  3ee061b0859a0ccc9a99d1b33ee6a16beb1828a308a610c6311b3a6d6c1f6d8b
- SHA512
  
  889426c71e57203851f51dd27d489b07839ad4d4712b9f62287bc665aa725898ecc2e7cd74129adafd29cbb5c664b5cd09f80623ba80c88db8abd8cfc0d5847a
Score

10^/10

suricata
- Suspicious use of NtCreateProcessExOtherParentProcess
- suricata: ET MALWARE GCleaner Downloader Activity M1
  suricata
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy