General

  • Target

    ce7cea1f2a82e16ae93ce1ecaa595c8e3dc09e8e262e8a64016dc656f46c2ffe

  • Size

    1.6MB

  • Sample

    220319-wrnd5afdh9

  • MD5

    13c833354316727fcab655a7464642eb

  • SHA1

    df2191f3e5e45e9e91d9e74cc04e29aa5f0afb75

  • SHA256

    ce7cea1f2a82e16ae93ce1ecaa595c8e3dc09e8e262e8a64016dc656f46c2ffe

  • SHA512

    3f3533f36dad7ce6a1df605de7501d0a30401ca258b599634268a6025c82950bcd5f49b951a4f5c17123e16a757c09a5724f5e24aebf3be9a3fa462c8bed9569

Malware Config

Targets

    • Target

      ce7cea1f2a82e16ae93ce1ecaa595c8e3dc09e8e262e8a64016dc656f46c2ffe

    • Size

      1.6MB

    • MD5

      13c833354316727fcab655a7464642eb

    • SHA1

      df2191f3e5e45e9e91d9e74cc04e29aa5f0afb75

    • SHA256

      ce7cea1f2a82e16ae93ce1ecaa595c8e3dc09e8e262e8a64016dc656f46c2ffe

    • SHA512

      3f3533f36dad7ce6a1df605de7501d0a30401ca258b599634268a6025c82950bcd5f49b951a4f5c17123e16a757c09a5724f5e24aebf3be9a3fa462c8bed9569

    • RevcodeRat, WebMonitorRat

      WebMonitor is a remote access tool that you can use from any browser access to control, and monitor your phones, or PCs.

    • WebMonitor Payload

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks