Overview

overview

8

Static

static

7859a1b8a6...75.exe

windows7-x64

8

7859a1b8a6...75.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7859a1b8a62977fce933101c1803427940703a9ae844dd98c3d65aa759bed675

  • Size

    360KB

  • Sample

    221123-lyklpscf38

  • MD5

    54757dc6960061fa530c3d766e309252

  • SHA1

    1752cecd9ec0d0f7a140b151ce1571fc86d717a2

  • SHA256

    7859a1b8a62977fce933101c1803427940703a9ae844dd98c3d65aa759bed675

  • SHA512

    7229edfaf2b000ca78458bfadcf0958b43db0f480c277e3ddf3d1b08e037cbb04408bec515b4208a465a940a42c338d67f7e325047aac608b5ca49a186d8c78f

  • SSDEEP

    6144:sCoE1/Mx0h2VlcFvyA6T15lcMXitjnPOGj1fhVbUL5Hm6Vu8GwNvl1a:tofx0hoA6T1DXybGKBULc6IRw

Score
8/10
persistence

Malware Config

Targets

    • Target

      7859a1b8a62977fce933101c1803427940703a9ae844dd98c3d65aa759bed675

    • Size

      360KB

    • MD5

      54757dc6960061fa530c3d766e309252

    • SHA1

      1752cecd9ec0d0f7a140b151ce1571fc86d717a2

    • SHA256

      7859a1b8a62977fce933101c1803427940703a9ae844dd98c3d65aa759bed675

    • SHA512

      7229edfaf2b000ca78458bfadcf0958b43db0f480c277e3ddf3d1b08e037cbb04408bec515b4208a465a940a42c338d67f7e325047aac608b5ca49a186d8c78f

    • SSDEEP

      6144:sCoE1/Mx0h2VlcFvyA6T15lcMXitjnPOGj1fhVbUL5Hm6Vu8GwNvl1a:tofx0hoA6T1DXybGKBULc6IRw

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Deletes itself

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Remote System Discovery

1
T1018

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks