Overview

overview

10

Static

static

SecuriteIn...97.exe

windows7_x64

10

SecuriteIn...97.exe

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SecuriteInfo.com.BackDoor.SpyBotNET.25.4997.4827

  • Size

    687KB

  • Sample

    220414-t61a5aged3

  • MD5

    dd7de3e242afd0dbd6166879237df822

  • SHA1

    3a4fb913f82082633f6130f12c28fa10b53db91e

  • SHA256

    5f55d8c4830b28a08183d87428064f6a641f7c95ffe373cafe1ecb8b36043d99

  • SHA512

    2c853287bddd0156f486ec8e7f36ee8d4a1f2e47b43c9a4f126e980546ce4359de7f7c1bfd2db1133cdfa5b99e64587b9e1f85898fc1eb95ac3d7b4161a181dc

Score
10/10
xpertratcollectionevasionpersistencerattrojan

Malware Config

Targets

    • Target

      SecuriteInfo.com.BackDoor.SpyBotNET.25.4997.4827

    • Size

      687KB

    • MD5

      dd7de3e242afd0dbd6166879237df822

    • SHA1

      3a4fb913f82082633f6130f12c28fa10b53db91e

    • SHA256

      5f55d8c4830b28a08183d87428064f6a641f7c95ffe373cafe1ecb8b36043d99

    • SHA512

      2c853287bddd0156f486ec8e7f36ee8d4a1f2e47b43c9a4f126e980546ce4359de7f7c1bfd2db1133cdfa5b99e64587b9e1f85898fc1eb95ac3d7b4161a181dc

    Score
    10/10
    xpertratcollectionevasionpersistencerattrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

2
T1060

Privilege Escalation

Bypass User Account Control

1
T1088

Defense Evasion

Bypass User Account Control

1
T1088

Disabling Security Tools

3
T1089

Modify Registry

6
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Email Collection

1
T1114

Exfiltration

Command and Control

Impact

Tasks