Overview

overview

6

Static

static

52c4322a3b...4b.exe

windows7-x64

6

52c4322a3b...4b.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    52c4322a3b85ec2517683ef59feaabbbebe908a972f54b4f2bf335f57445154b

  • Size

    214KB

  • Sample

    220717-cds8nsbda7

  • MD5

    8b618cec3c58f0a496e827c4dc803dbd

  • SHA1

    99e6e230b5ac66667c5aac4c567db3804798587d

  • SHA256

    52c4322a3b85ec2517683ef59feaabbbebe908a972f54b4f2bf335f57445154b

  • SHA512

    bee0ba1aca0546046bff1d056278e831ea4ccc3ae00acad225a4cd236969bb9a826ce7b57a169bf6d51180ee47850ef1889b0265d1c933b99e8cbe5bf973d88b

Score
6/10
discovery

Malware Config

Targets

    • Target

      52c4322a3b85ec2517683ef59feaabbbebe908a972f54b4f2bf335f57445154b

    • Size

      214KB

    • MD5

      8b618cec3c58f0a496e827c4dc803dbd

    • SHA1

      99e6e230b5ac66667c5aac4c567db3804798587d

    • SHA256

      52c4322a3b85ec2517683ef59feaabbbebe908a972f54b4f2bf335f57445154b

    • SHA512

      bee0ba1aca0546046bff1d056278e831ea4ccc3ae00acad225a4cd236969bb9a826ce7b57a169bf6d51180ee47850ef1889b0265d1c933b99e8cbe5bf973d88b

    Score
    6/10
    discovery

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks