f4a38232e1416731cec1d342ca9f0e58cceeb9a7e41535f2e34066d97a63413a | Triage

Submit
Reports

Overview

overview

8

Static

static

f4a38232e1...3a.exe

windows7-x64

8

f4a38232e1...3a.exe

windows10-2004-x64

8

Sharing

General

Target

f4a38232e1416731cec1d342ca9f0e58cceeb9a7e41535f2e34066d97a63413a
Size

602KB
Sample

221123-l5x6dadb67
MD5

3437dab1b9f9491cf16553e703edee14
SHA1

c0d47212bfae10eb2bfecd35ea3397f088d2c4e7
SHA256

f4a38232e1416731cec1d342ca9f0e58cceeb9a7e41535f2e34066d97a63413a
SHA512

14e9d708f1db39f80c0c119bc3b3223d1eac4eff13edc092357ddadb011c3dc6aaab80dadd9f40cf40b5504f96f100b5e8991caa322c393a9df6403dd5c6c2f9
SSDEEP

12288:pIny5DYTgWl6cIkBDHoarmeuXbSrVqZAc9nENgjHXwrHVY0vrGx:FUTgI6cPypOhqZByNMYK0ja

Score

8^/10

discovery

Static task

static1

Behavioral task

behavioral1

Sample

f4a38232e1416731cec1d342ca9f0e58cceeb9a7e41535f2e34066d97a63413a.exe

Resource

win7-20221111-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

f4a38232e1416731cec1d342ca9f0e58cceeb9a7e41535f2e34066d97a63413a.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  f4a38232e1416731cec1d342ca9f0e58cceeb9a7e41535f2e34066d97a63413a
- Size
  
  602KB
- MD5
  
  3437dab1b9f9491cf16553e703edee14
- SHA1
  
  c0d47212bfae10eb2bfecd35ea3397f088d2c4e7
- SHA256
  
  f4a38232e1416731cec1d342ca9f0e58cceeb9a7e41535f2e34066d97a63413a
- SHA512
  
  14e9d708f1db39f80c0c119bc3b3223d1eac4eff13edc092357ddadb011c3dc6aaab80dadd9f40cf40b5504f96f100b5e8991caa322c393a9df6403dd5c6c2f9
- SSDEEP
  
  12288:pIny5DYTgWl6cIkBDHoarmeuXbSrVqZAc9nENgjHXwrHVY0vrGx:FUTgI6cPypOhqZByNMYK0ja
Score

8^/10

discovery
- Drops file in Drivers directory
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy