buer | 7cf42b86ce5e7da39da70e7a4ec975cb6c3688201cf4160033c3ead411114b3b | Triage

Submit
Reports

Overview

overview

Static

static

7cf42b86ce...3b.exe

windows7-x64

7cf42b86ce...3b.exe

windows10-2004-x64

Sharing

General

Target

7cf42b86ce5e7da39da70e7a4ec975cb6c3688201cf4160033c3ead411114b3b
Size

297KB
Sample

220731-lvxrvsaee7
MD5

93635db616729ba0c3b625e46e91df4c
SHA1

452e4f91c12052852bb20649734a917f4360a810
SHA256

7cf42b86ce5e7da39da70e7a4ec975cb6c3688201cf4160033c3ead411114b3b
SHA512

c3bd159c1a4cce8e6ff3190453cebea30e24579738403ed17c1f3984df7c6502f66f14901df7ac5767f8aa61b42a2f7d60fbc22eeb4912e55ceb6c727ad7f309

Score

10^/10

buer loader persistence

Static task

static1

Behavioral task

behavioral1

Sample

7cf42b86ce5e7da39da70e7a4ec975cb6c3688201cf4160033c3ead411114b3b.exe

Resource

win7-20220718-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

7cf42b86ce5e7da39da70e7a4ec975cb6c3688201cf4160033c3ead411114b3b.exe

Resource

win10v2004-20220721-en

buer loader persistence

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Extracted

Family

buer

C2

http://koralak.hk/

Targets

- Target
  
  7cf42b86ce5e7da39da70e7a4ec975cb6c3688201cf4160033c3ead411114b3b
- Size
  
  297KB
- MD5
  
  93635db616729ba0c3b625e46e91df4c
- SHA1
  
  452e4f91c12052852bb20649734a917f4360a810
- SHA256
  
  7cf42b86ce5e7da39da70e7a4ec975cb6c3688201cf4160033c3ead411114b3b
- SHA512
  
  c3bd159c1a4cce8e6ff3190453cebea30e24579738403ed17c1f3984df7c6502f66f14901df7ac5767f8aa61b42a2f7d60fbc22eeb4912e55ceb6c727ad7f309
Score

10^/10

buer loader persistence
- Buer
  Buer is a new modular loader first seen in August 2019.
  loader buer
- Buer Loader
  Detects Buer loader in memory or disk.
  loader
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

buerloaderpersistence

© 2018-2024

Terms | Privacy