e7e302915a9f74b4a30688d0bf64969c143501888adeb83eb50b7c4af05d4a7a | Triage

Submit
Reports

Overview

overview

6

Static

static

krnl.exe

windows7-x64

3

krnl.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

General

Target

krnl.exe
Size

2.2MB
Sample

221008-vqlngafaf5
MD5

5957ba5836c24cc452c3b42fffe01dee
SHA1

9f05eae494b48009437bbdd26813526b94ad656d
SHA256

e7e302915a9f74b4a30688d0bf64969c143501888adeb83eb50b7c4af05d4a7a
SHA512

1107892e0ab9968ef6713b47961ac1f90697c794484ed044f53f2d07337fe9f4f04585ad367693cdd060450799e53ac1160b947bcf2aa2883d60505df7a3cbea
SSDEEP

49152:9vEG+3gXNoFbvNOL1b/HmDeH31vAN3/bk3g35:9MGjovOl/HmiH31vANn5

Score

6^/10

persistence

Static task

static1

Behavioral task

behavioral1

Sample

krnl.exe

Resource

win7-20220812-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

krnl.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  krnl.exe
- Size
  
  2.2MB
- MD5
  
  5957ba5836c24cc452c3b42fffe01dee
- SHA1
  
  9f05eae494b48009437bbdd26813526b94ad656d
- SHA256
  
  e7e302915a9f74b4a30688d0bf64969c143501888adeb83eb50b7c4af05d4a7a
- SHA512
  
  1107892e0ab9968ef6713b47961ac1f90697c794484ed044f53f2d07337fe9f4f04585ad367693cdd060450799e53ac1160b947bcf2aa2883d60505df7a3cbea
- SSDEEP
  
  49152:9vEG+3gXNoFbvNOL1b/HmDeH31vAN3/bk3g35:9MGjovOl/HmiH31vANn5
Score

6^/10

persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy