Overview

overview

8

Static

static

f7b72c2b8a...d3.exe

windows7-x64

8

f7b72c2b8a...d3.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f7b72c2b8afeb42e37380d8f9755e6d3e140821101c8e91708e8a762423bdfd3

  • Size

    602KB

  • Sample

    221123-l5kkaadb46

  • MD5

    49b6b852e9d699aa50763db48a1600f6

  • SHA1

    477fee5afc118a8351f3f19af210328d3c41117f

  • SHA256

    f7b72c2b8afeb42e37380d8f9755e6d3e140821101c8e91708e8a762423bdfd3

  • SHA512

    9d5debf12371401519d89690a0baa33ce692bb3aa97919fda8fbe986ccad58b0b331c8786f3869607ba031dd979b581976165b3bb315a0593dae6d0a0d7b2713

  • SSDEEP

    12288:4Iny5DYTZIvHB7oIPgnNm+nz/XXZqOR6oabnA3MP6PAFCm:WUTZAhUa6jtRzabnAt

Score
8/10
discovery

Malware Config

Targets

    • Target

      f7b72c2b8afeb42e37380d8f9755e6d3e140821101c8e91708e8a762423bdfd3

    • Size

      602KB

    • MD5

      49b6b852e9d699aa50763db48a1600f6

    • SHA1

      477fee5afc118a8351f3f19af210328d3c41117f

    • SHA256

      f7b72c2b8afeb42e37380d8f9755e6d3e140821101c8e91708e8a762423bdfd3

    • SHA512

      9d5debf12371401519d89690a0baa33ce692bb3aa97919fda8fbe986ccad58b0b331c8786f3869607ba031dd979b581976165b3bb315a0593dae6d0a0d7b2713

    • SSDEEP

      12288:4Iny5DYTZIvHB7oIPgnNm+nz/XXZqOR6oabnA3MP6PAFCm:WUTZAhUa6jtRzabnAt

    Score
    8/10
    discovery

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks