Overview

overview

8

Static

static

f1006e0dff...29.exe

windows7-x64

8

f1006e0dff...29.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f1006e0dffa8668a7a41460ea0c020b49268a7e14a25142919f8358c13494629

  • Size

    601KB

  • Sample

    221123-l57ptage2t

  • MD5

    d784b59855ff2441de6a38b5542d1411

  • SHA1

    b14b76b3043eac4f1a2a132b98801c42868de900

  • SHA256

    f1006e0dffa8668a7a41460ea0c020b49268a7e14a25142919f8358c13494629

  • SHA512

    c61cbe58f10dfcc2dc4b95ccf9f44565e86652367f81b4af83994a85e98b6c012c7ca870c2a7ecaf20c4e2db3af5ba613f24e487490185c943d85aa18d52bd25

  • SSDEEP

    12288:VIny5DYTtDP6ft+ZYBIHpsGSMByE57m61jTacliVl:hUTtb6UZYBIHpTBzlRRaRP

Score
8/10
discovery

Malware Config

Targets

    • Target

      f1006e0dffa8668a7a41460ea0c020b49268a7e14a25142919f8358c13494629

    • Size

      601KB

    • MD5

      d784b59855ff2441de6a38b5542d1411

    • SHA1

      b14b76b3043eac4f1a2a132b98801c42868de900

    • SHA256

      f1006e0dffa8668a7a41460ea0c020b49268a7e14a25142919f8358c13494629

    • SHA512

      c61cbe58f10dfcc2dc4b95ccf9f44565e86652367f81b4af83994a85e98b6c012c7ca870c2a7ecaf20c4e2db3af5ba613f24e487490185c943d85aa18d52bd25

    • SSDEEP

      12288:VIny5DYTtDP6ft+ZYBIHpsGSMByE57m61jTacliVl:hUTtb6UZYBIHpTBzlRRaRP

    Score
    8/10
    discovery

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks