Overview

overview

8

Static

static

fafa02136a...b2.exe

windows7-x64

8

fafa02136a...b2.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fafa02136ab83334ff91531e2cfd9911ba7c5759df63beae12cbd225822440b2

  • Size

    602KB

  • Sample

    221123-l5dfzadb35

  • MD5

    75af14b7612dddb7239768b8d376eede

  • SHA1

    9e8044cb12c86e7526fd7913d1d5ca882efdd9ae

  • SHA256

    fafa02136ab83334ff91531e2cfd9911ba7c5759df63beae12cbd225822440b2

  • SHA512

    56cb245c9a13292cf927dc3e4b97877c5f0aae47122db2f98276e2fc4b610f8650c0e2363f76177da6bac57627b6e1715632d4f2537a1c8ca1eafa0a7bf1269a

  • SSDEEP

    12288:/Iny5DYTkI7yUDl6pL2cM/64A0l8mnvHtfIDUmqzgaU4b0q:nUTk0yUst7MN/82vtNm4gG4

Score
8/10
discovery

Malware Config

Targets

    • Target

      fafa02136ab83334ff91531e2cfd9911ba7c5759df63beae12cbd225822440b2

    • Size

      602KB

    • MD5

      75af14b7612dddb7239768b8d376eede

    • SHA1

      9e8044cb12c86e7526fd7913d1d5ca882efdd9ae

    • SHA256

      fafa02136ab83334ff91531e2cfd9911ba7c5759df63beae12cbd225822440b2

    • SHA512

      56cb245c9a13292cf927dc3e4b97877c5f0aae47122db2f98276e2fc4b610f8650c0e2363f76177da6bac57627b6e1715632d4f2537a1c8ca1eafa0a7bf1269a

    • SSDEEP

      12288:/Iny5DYTkI7yUDl6pL2cM/64A0l8mnvHtfIDUmqzgaU4b0q:nUTk0yUst7MN/82vtNm4gG4

    Score
    8/10
    discovery

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks