Overview

overview

7

Static

static

c820e736a1...70.exe

windows7-x64

7

c820e736a1...70.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c820e736a1a88dd1aea178e1565f3cfe99ce4069ad74c28beedcab82c6759570

  • Size

    327KB

  • Sample

    221123-jefsasfd35

  • MD5

    caa9fb4dba6b58a36a044b8add40a59b

  • SHA1

    0117b0832d9a4e385dc6f79c295af793b18a4254

  • SHA256

    c820e736a1a88dd1aea178e1565f3cfe99ce4069ad74c28beedcab82c6759570

  • SHA512

    866b2ab080bb7892d8792cb6d250f2ac568db35c55c86c245f537c4bf22c1bd71ced493bc06f3bb3966154252e1edb78a6f7356add56927dc681e850c5be331f

  • SSDEEP

    6144:Jr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FH:Jr4iu6/eIo4Rsw33AtsmQC

Score
7/10
discovery

Malware Config

Targets

    • Target

      c820e736a1a88dd1aea178e1565f3cfe99ce4069ad74c28beedcab82c6759570

    • Size

      327KB

    • MD5

      caa9fb4dba6b58a36a044b8add40a59b

    • SHA1

      0117b0832d9a4e385dc6f79c295af793b18a4254

    • SHA256

      c820e736a1a88dd1aea178e1565f3cfe99ce4069ad74c28beedcab82c6759570

    • SHA512

      866b2ab080bb7892d8792cb6d250f2ac568db35c55c86c245f537c4bf22c1bd71ced493bc06f3bb3966154252e1edb78a6f7356add56927dc681e850c5be331f

    • SSDEEP

      6144:Jr469uEo2S1YnQmCX492DkwNP3qpYFGgjwuBGVdLAt4ZHd2i3gjd+ZD/6FH:Jr4iu6/eIo4Rsw33AtsmQC

    Score
    7/10
    discovery

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks