Overview

overview

10

Static

static

e18415477f...38.exe

windows7-x64

10

e18415477f...38.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e18415477f57a91cf1e4e6cc4847532c292099c69951c1350d87d27688edc438

  • Size

    364KB

  • Sample

    221123-ly5xmscf65

  • MD5

    11b6e6302136c2041401e36eab44822d

  • SHA1

    b7ea4dde1a5bcc1b6dc13ba8fcc0b0797cce4a8e

  • SHA256

    e18415477f57a91cf1e4e6cc4847532c292099c69951c1350d87d27688edc438

  • SHA512

    4f8bd58aa60bc7bf14474714befd1ec89bd881a5a9a603976f573dcbbba332e6d092608927bae24a8eb6aa455a74e8cfbd2acfcb44ce1c687de9056ffd8299e3

  • SSDEEP

    6144:9lyXMFWRPs8OW452Q0H2DjOnJm6Zy/ZPAQ9gBf:CMFOkbV5f0H2DeJxZaZPJ+

Score
10/10
evasionpersistencetrojan

Malware Config

Targets

    • Target

      e18415477f57a91cf1e4e6cc4847532c292099c69951c1350d87d27688edc438

    • Size

      364KB

    • MD5

      11b6e6302136c2041401e36eab44822d

    • SHA1

      b7ea4dde1a5bcc1b6dc13ba8fcc0b0797cce4a8e

    • SHA256

      e18415477f57a91cf1e4e6cc4847532c292099c69951c1350d87d27688edc438

    • SHA512

      4f8bd58aa60bc7bf14474714befd1ec89bd881a5a9a603976f573dcbbba332e6d092608927bae24a8eb6aa455a74e8cfbd2acfcb44ce1c687de9056ffd8299e3

    • SSDEEP

      6144:9lyXMFWRPs8OW452Q0H2DjOnJm6Zy/ZPAQ9gBf:CMFOkbV5f0H2DeJxZaZPJ+

    Score
    10/10
    evasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Executes dropped EXE

    • Deletes itself

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks