Overview

overview

10

Static

static

winrar600.exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    winrar600.exe

  • Size

    2.9MB

  • Sample

    220714-3xeshacabk

  • MD5

    c74862e16bcc2b0e02cadb7ab14e3cd6

  • SHA1

    6569aa87d28db836d7d3380b32a83654f3e909cf

  • SHA256

    aff4bb9b15bccff67a112a7857d28d3f2f436e2e42f11be14930fe496269d573

  • SHA512

    d28fbfd2b75789d85f402190b25bc7649bcde742495465ac22ffc3bc583d5e27aa2975d781d3a7d51b26149236ebcce8a94ec1d615e83a568d68c57bb8b10fa7

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      winrar600.exe

    • Size

      2.9MB

    • MD5

      c74862e16bcc2b0e02cadb7ab14e3cd6

    • SHA1

      6569aa87d28db836d7d3380b32a83654f3e909cf

    • SHA256

      aff4bb9b15bccff67a112a7857d28d3f2f436e2e42f11be14930fe496269d573

    • SHA512

      d28fbfd2b75789d85f402190b25bc7649bcde742495465ac22ffc3bc583d5e27aa2975d781d3a7d51b26149236ebcce8a94ec1d615e83a568d68c57bb8b10fa7

    Score
    10/10
    discoverypersistence

    • Modifies system executable filetype association

      persistence

    • Executes dropped EXE

    • Registers COM server for autorun

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks