Analysis

  • max time kernel
    154s
  • max time network
    154s
  • platform
    windows10_x64
  • resource
    win10-en-20211208
  • submitted
    21-12-2021 11:54

General

  • Target

    313c731da99da31454ec6114d5a8ce03dcf9a24caf02270f9292ab7b9278b316.bin.exe

  • Size

    67KB

  • MD5

    b09d1bafa47c8c3f9a4707b24512e734

  • SHA1

    e9abaf7caedeaf5417b8c2d3a88de61f3419a5e1

  • SHA256

    313c731da99da31454ec6114d5a8ce03dcf9a24caf02270f9292ab7b9278b316

  • SHA512

    38119daa05bbe7661520dc913ecb2d890cd817565bd40aa4ab8ccdc48abdd883e6e044f333648cf7caa6e9eb325969888e08a32c60fbf3928a6c40f6c573a512

Malware Config

Signatures

  • Windows security bypass 2 TTPs
  • Windows security modification 2 TTPs 7 IoCs
  • Adds Run key to start application 2 TTPs 2 IoCs
  • Drops file in Windows directory 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\313c731da99da31454ec6114d5a8ce03dcf9a24caf02270f9292ab7b9278b316.bin.exe
    "C:\Users\Admin\AppData\Local\Temp\313c731da99da31454ec6114d5a8ce03dcf9a24caf02270f9292ab7b9278b316.bin.exe"
    1⤵
    • Windows security modification
    • Adds Run key to start application
    • Drops file in Windows directory
    PID:3684

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads