Overview

overview

6

Static

static

6837f75a51...49.exe

windows7-x64

6

6837f75a51...49.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6837f75a51ba2fdebe7ef66fbd67d4e132e53148fc926abcb0672fbaa41a3c49

  • Size

    2.6MB

  • Sample

    221123-k2qrfsaa28

  • MD5

    21bfbbd8990a2b32f74f609f733fad97

  • SHA1

    afee8492d97800b3fe85862b36f8df9581170b96

  • SHA256

    6837f75a51ba2fdebe7ef66fbd67d4e132e53148fc926abcb0672fbaa41a3c49

  • SHA512

    bfc83be6ca09f2d24b9405f742642e004eb3ffa0aa0aef0ce4ae0fe0c40fde440941582c8cb310833d2d3637727f16efa7a7738939d10ad9c3288a2cfdbf2b20

  • SSDEEP

    49152:UWzOOR4X1he1HxU25LBcD08KGbNLeGMb4un:UOR4FheA25LBcJR5I0k

Score
6/10
discoverypersistence

Malware Config

Targets

    • Target

      6837f75a51ba2fdebe7ef66fbd67d4e132e53148fc926abcb0672fbaa41a3c49

    • Size

      2.6MB

    • MD5

      21bfbbd8990a2b32f74f609f733fad97

    • SHA1

      afee8492d97800b3fe85862b36f8df9581170b96

    • SHA256

      6837f75a51ba2fdebe7ef66fbd67d4e132e53148fc926abcb0672fbaa41a3c49

    • SHA512

      bfc83be6ca09f2d24b9405f742642e004eb3ffa0aa0aef0ce4ae0fe0c40fde440941582c8cb310833d2d3637727f16efa7a7738939d10ad9c3288a2cfdbf2b20

    • SSDEEP

      49152:UWzOOR4X1he1HxU25LBcD08KGbNLeGMb4un:UOR4FheA25LBcJR5I0k

    Score
    6/10
    discoverypersistence

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks