Overview

overview

7

Static

static

cd4f4e2d0d...e5.exe

windows7-x64

7

cd4f4e2d0d...e5.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cd4f4e2d0d9db3eb62bd59dc7a2c5c9097b8c0b2a787f1e030c7e62a8f8bfee5

  • Size

    316KB

  • Sample

    221123-jbytpsaf7s

  • MD5

    68ae954ed6851f0753b20559362f1af8

  • SHA1

    dfac1e1646891dfea49b89d0c4d0b423f6e6e1df

  • SHA256

    cd4f4e2d0d9db3eb62bd59dc7a2c5c9097b8c0b2a787f1e030c7e62a8f8bfee5

  • SHA512

    5e68d9ddd4da235b88e9f11414024da66c64db036d4279d25d5ff1db32e3a02ff514b6d54fc5e27492bd53fdf7e4cefb0e264464af2d6c1779d9d01ae94bc537

  • SSDEEP

    6144:frmbUzkuvcBYC47l2xkihNbvnXz3ma0QKctzwl2hvsbHGJI:frvkuveY3ibXz3UQKctk2hsb9

Score
7/10
discovery

Malware Config

Targets

    • Target

      cd4f4e2d0d9db3eb62bd59dc7a2c5c9097b8c0b2a787f1e030c7e62a8f8bfee5

    • Size

      316KB

    • MD5

      68ae954ed6851f0753b20559362f1af8

    • SHA1

      dfac1e1646891dfea49b89d0c4d0b423f6e6e1df

    • SHA256

      cd4f4e2d0d9db3eb62bd59dc7a2c5c9097b8c0b2a787f1e030c7e62a8f8bfee5

    • SHA512

      5e68d9ddd4da235b88e9f11414024da66c64db036d4279d25d5ff1db32e3a02ff514b6d54fc5e27492bd53fdf7e4cefb0e264464af2d6c1779d9d01ae94bc537

    • SSDEEP

      6144:frmbUzkuvcBYC47l2xkihNbvnXz3ma0QKctzwl2hvsbHGJI:frvkuveY3ibXz3UQKctk2hsb9

    Score
    7/10
    discovery

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks