Overview

overview

8

Static

static

1

791b183fcc...8d.exe

windows7-x64

8

791b183fcc...8d.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    791b183fcce5fac4422e7fd242f167295ed513310065418e986834280179268d

  • Size

    445KB

  • Sample

    221123-m1b8saaf6t

  • MD5

    070efc53567f5f26651aff1a088e7d7e

  • SHA1

    71afa16680a0906d6c3e56fe64dba5948e18d857

  • SHA256

    791b183fcce5fac4422e7fd242f167295ed513310065418e986834280179268d

  • SHA512

    192a08bf5e893440a1fc32fc8adef17305533168bbb4bf77b8f6afdbc8d0f383488860a0c416587b78a662bc9471d34b17b3d262483002d159d4029f84b64faa

  • SSDEEP

    12288:yEkw8w9Tc479fRPixnTbuur+g/cdzS3oCKkmYjQhu:yFw8QBxtunTb99cpSzKk/sE

Score
8/10
discovery

Malware Config

Targets

    • Target

      791b183fcce5fac4422e7fd242f167295ed513310065418e986834280179268d

    • Size

      445KB

    • MD5

      070efc53567f5f26651aff1a088e7d7e

    • SHA1

      71afa16680a0906d6c3e56fe64dba5948e18d857

    • SHA256

      791b183fcce5fac4422e7fd242f167295ed513310065418e986834280179268d

    • SHA512

      192a08bf5e893440a1fc32fc8adef17305533168bbb4bf77b8f6afdbc8d0f383488860a0c416587b78a662bc9471d34b17b3d262483002d159d4029f84b64faa

    • SSDEEP

      12288:yEkw8w9Tc479fRPixnTbuur+g/cdzS3oCKkmYjQhu:yFw8QBxtunTb99cpSzKk/sE

    Score
    8/10
    discovery

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks