2035ef02a014f9ae2a21d39c98604ca4863d77c47dcc12d31bb9b7b2d3e5fc98 | Triage

Submit
Reports

Overview

overview

Static

static

2035ef02a0...98.exe

windows7_x64

2035ef02a0...98.exe

windows10-2004_x64

8

Sharing

General

Target

2035ef02a014f9ae2a21d39c98604ca4863d77c47dcc12d31bb9b7b2d3e5fc98
Size

155KB
Sample

220612-qjnf9sdacm
MD5

1b613159f436928ade528943b037031f
SHA1

a54b04ce4d59820528d5123ab2fa83351bac607a
SHA256

2035ef02a014f9ae2a21d39c98604ca4863d77c47dcc12d31bb9b7b2d3e5fc98
SHA512

3bbb69923b7ee0c4afb762be1a62b4131bc07c11f47b55685d3c2d738ff77cb17ee4bd8e4f0fc02bd0759ae1e656a017735750fd70f337c7effe6a9888d37050

Score

10^/10

persistence suricata

Static task

static1

Behavioral task

behavioral1

Sample

2035ef02a014f9ae2a21d39c98604ca4863d77c47dcc12d31bb9b7b2d3e5fc98.exe

Resource

win7-20220414-en

persistence suricata

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

2035ef02a014f9ae2a21d39c98604ca4863d77c47dcc12d31bb9b7b2d3e5fc98.exe

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  2035ef02a014f9ae2a21d39c98604ca4863d77c47dcc12d31bb9b7b2d3e5fc98
- Size
  
  155KB
- MD5
  
  1b613159f436928ade528943b037031f
- SHA1
  
  a54b04ce4d59820528d5123ab2fa83351bac607a
- SHA256
  
  2035ef02a014f9ae2a21d39c98604ca4863d77c47dcc12d31bb9b7b2d3e5fc98
- SHA512
  
  3bbb69923b7ee0c4afb762be1a62b4131bc07c11f47b55685d3c2d738ff77cb17ee4bd8e4f0fc02bd0759ae1e656a017735750fd70f337c7effe6a9888d37050
Score

10^/10

persistence suricata
- suricata: ET MALWARE IRC Nick change on non-standard port
  suricata: ET MALWARE IRC Nick change on non-standard port
  suricata
- suricata: ET MALWARE Likely Bot Nick in IRC (Country Code ISO 3166-1 alpha-3)
  suricata: ET MALWARE Likely Bot Nick in IRC (Country Code ISO 3166-1 alpha-3)
  suricata
- suricata: ET MALWARE Likely Bot Nick in IRC (USA +..)
  suricata: ET MALWARE Likely Bot Nick in IRC (USA +..)
  suricata
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

persistencesuricata

behavioral2

© 2018-2024

Terms | Privacy