Overview

overview

10

Static

static

10

de26c6225a...75.exe

windows7_x64

6

de26c6225a...75.exe

windows10-2004_x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    de26c6225a6b30e890f0f9a70ba99dd7262899cfcd881c05fcd6f53ff7b21875

  • Size

    5.5MB

  • Sample

    220217-ay84hsfac4

  • MD5

    0326742335d37bad9ad5479db7ca7075

  • SHA1

    c4a03318d3940b4f7a73d7b4f3c4de00ca683aa6

  • SHA256

    de26c6225a6b30e890f0f9a70ba99dd7262899cfcd881c05fcd6f53ff7b21875

  • SHA512

    90a6e00bf9e08b663c86ef075f891a429e601f4a49916ba1b490c0b7a1ca759e7fc8d3e984bfc62052b1f82b30444a9ad7891a8d66220b16b4bda4897883d83c

Score
10/10
darkcometneshtapersistence

Malware Config

Targets

    • Target

      de26c6225a6b30e890f0f9a70ba99dd7262899cfcd881c05fcd6f53ff7b21875

    • Size

      5.5MB

    • MD5

      0326742335d37bad9ad5479db7ca7075

    • SHA1

      c4a03318d3940b4f7a73d7b4f3c4de00ca683aa6

    • SHA256

      de26c6225a6b30e890f0f9a70ba99dd7262899cfcd881c05fcd6f53ff7b21875

    • SHA512

      90a6e00bf9e08b663c86ef075f891a429e601f4a49916ba1b490c0b7a1ca759e7fc8d3e984bfc62052b1f82b30444a9ad7891a8d66220b16b4bda4897883d83c

    Score
    6/10
    persistence

    • Adds Run key to start application

      persistence

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks