Overview

overview

7

Static

static

e23f8240ba...a3.exe

windows7-x64

7

e23f8240ba...a3.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e23f8240bad38f5636bc30c830f6c1aeac9b6a25f11ae0196854462d3458a1a3

  • Size

    327KB

  • Sample

    221123-h248qseg72

  • MD5

    ae7edef41e53575a5b46bbddb101e10b

  • SHA1

    fb10bc962ff1b1c09cd6923307b1da55c0d2ca23

  • SHA256

    e23f8240bad38f5636bc30c830f6c1aeac9b6a25f11ae0196854462d3458a1a3

  • SHA512

    919c36a517cc82a9f266c0ebb02dedd1b10b60ecf9708b6e5c7cc37aa8b97ab950e6bd123b2b6c6cdf02e58c2e9d3a0f925f67a85184cc1d458acb4c7762f826

  • SSDEEP

    6144:Ar469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fu:Ar4iu6/eIo4Rsw33AtsmQH

Score
7/10
discovery

Malware Config

Targets

    • Target

      e23f8240bad38f5636bc30c830f6c1aeac9b6a25f11ae0196854462d3458a1a3

    • Size

      327KB

    • MD5

      ae7edef41e53575a5b46bbddb101e10b

    • SHA1

      fb10bc962ff1b1c09cd6923307b1da55c0d2ca23

    • SHA256

      e23f8240bad38f5636bc30c830f6c1aeac9b6a25f11ae0196854462d3458a1a3

    • SHA512

      919c36a517cc82a9f266c0ebb02dedd1b10b60ecf9708b6e5c7cc37aa8b97ab950e6bd123b2b6c6cdf02e58c2e9d3a0f925f67a85184cc1d458acb4c7762f826

    • SSDEEP

      6144:Ar469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6Fu:Ar4iu6/eIo4Rsw33AtsmQH

    Score
    7/10
    discovery

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks