Overview

overview

8

Static

static

d152138cdf...5a.exe

windows7-x64

8

d152138cdf...5a.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d152138cdf58a3aa803e10ce5b573ab7210f417a7f99cd177c5fc0b92559525a

  • Size

    603KB

  • Sample

    221123-l79xysgf6s

  • MD5

    8d1e141f246b4f197efb4a9262a4ecde

  • SHA1

    47fe8b7d90daa3c61b03a0c0e59e86b1bac1cdbc

  • SHA256

    d152138cdf58a3aa803e10ce5b573ab7210f417a7f99cd177c5fc0b92559525a

  • SHA512

    ec26218b6c614cc9953216803f00df9a2791706670e875a0899e6b45c87e7b04a25865dffd5388d252ee9039b42e086911f62331a54daee16f8e108b9737cc69

  • SSDEEP

    12288:0Iny5DYT8U1dbbIu2Li5XEAcATfDEseecKvt:yUT5nP2LKUzA+nKl

Score
8/10
discovery

Malware Config

Targets

    • Target

      d152138cdf58a3aa803e10ce5b573ab7210f417a7f99cd177c5fc0b92559525a

    • Size

      603KB

    • MD5

      8d1e141f246b4f197efb4a9262a4ecde

    • SHA1

      47fe8b7d90daa3c61b03a0c0e59e86b1bac1cdbc

    • SHA256

      d152138cdf58a3aa803e10ce5b573ab7210f417a7f99cd177c5fc0b92559525a

    • SHA512

      ec26218b6c614cc9953216803f00df9a2791706670e875a0899e6b45c87e7b04a25865dffd5388d252ee9039b42e086911f62331a54daee16f8e108b9737cc69

    • SSDEEP

      12288:0Iny5DYT8U1dbbIu2Li5XEAcATfDEseecKvt:yUT5nP2LKUzA+nKl

    Score
    8/10
    discovery

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks