389372985063a78558fcefc3cbc33dfa69e63bbe200f753f435fdeb956288821 | Triage

Submit
Reports

Overview

overview

8

Static

static

dridex

windows10-2004-x64

8

Sharing

General

Target

389372985063a78558fcefc3cbc33dfa69e63bbe200f753f435fdeb956288821
Size

1.1MB
Sample

220804-le461adcb4
MD5

b781d226d2dc8ba30b659ebc94afc8d6
SHA1

f9b2d7838bd8c015dc83444d72c860079fe2f00a
SHA256

389372985063a78558fcefc3cbc33dfa69e63bbe200f753f435fdeb956288821
SHA512

fac0e710b4c293d19edf22590bf7c55406ff959952e5590435e3a7db2ed78357c796d325f1dbc4e1f25ff6fd0b16f8fbe83b0e9dfc0e69970584eb415029cb3a

Score

8^/10

microsoft persistence phishing

Static task

static1

Behavioral task

behavioral1

Sample

389372985063a78558fcefc3cbc33dfa69e63bbe200f753f435fdeb956288821.exe

Resource

win10v2004-20220721-en

microsoft persistence phishing

windows10-2004-x64

15 signatures

150 seconds

Malware Config

Targets

- Target
  
  389372985063a78558fcefc3cbc33dfa69e63bbe200f753f435fdeb956288821
- Size
  
  1.1MB
- MD5
  
  b781d226d2dc8ba30b659ebc94afc8d6
- SHA1
  
  f9b2d7838bd8c015dc83444d72c860079fe2f00a
- SHA256
  
  389372985063a78558fcefc3cbc33dfa69e63bbe200f753f435fdeb956288821
- SHA512
  
  fac0e710b4c293d19edf22590bf7c55406ff959952e5590435e3a7db2ed78357c796d325f1dbc4e1f25ff6fd0b16f8fbe83b0e9dfc0e69970584eb415029cb3a
Score

8^/10

microsoft persistence phishing
- Executes dropped EXE
- Registers COM server for autorun
  persistence
- Sets file execution options in registry
  persistence
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Detected potential entity reuse from brand microsoft.
  phishing microsoft
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

microsoftpersistencephishing

© 2018-2024

Terms | Privacy