Overview

overview

8

Static

static

91ff8f57c1...b8.exe

windows7-x64

8

91ff8f57c1...b8.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    91ff8f57c135a92f616c071e7e1814d2f6a5470c5cec7cf799f388c8498efeb8

  • Size

    101KB

  • Sample

    221020-ym94facdf3

  • MD5

    a05314a0dd92ba6fb68c6f825f028caf

  • SHA1

    a4ee6b93db17a6f3741724cfa5e597abf8ae5372

  • SHA256

    91ff8f57c135a92f616c071e7e1814d2f6a5470c5cec7cf799f388c8498efeb8

  • SHA512

    6854cc64ce2d166191767a73b0993f91c50c6a455a56abebdeace64e1cb809e13b307965089a2ea9e7e8cff91f85343be5cd34fba6235885f2ad9eecb4b580e7

  • SSDEEP

    1536:8eyMZGRyHYWEmiiqxhhikSHRhALog00bTh9XFebFhP16VgWyK/m:8e9ZIdxmibGROLo4Ph9XqPoKWR/m

Score
8/10
persistence

Malware Config

Targets

    • Target

      91ff8f57c135a92f616c071e7e1814d2f6a5470c5cec7cf799f388c8498efeb8

    • Size

      101KB

    • MD5

      a05314a0dd92ba6fb68c6f825f028caf

    • SHA1

      a4ee6b93db17a6f3741724cfa5e597abf8ae5372

    • SHA256

      91ff8f57c135a92f616c071e7e1814d2f6a5470c5cec7cf799f388c8498efeb8

    • SHA512

      6854cc64ce2d166191767a73b0993f91c50c6a455a56abebdeace64e1cb809e13b307965089a2ea9e7e8cff91f85343be5cd34fba6235885f2ad9eecb4b580e7

    • SSDEEP

      1536:8eyMZGRyHYWEmiiqxhhikSHRhALog00bTh9XFebFhP16VgWyK/m:8e9ZIdxmibGROLo4Ph9XqPoKWR/m

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks