ab28f86c994e17e689d252ddb88b7df23f0a444741711dd5ecd2e90a99c7a999 | Triage

Submit
Reports

Overview

overview

8

Static

static

ab28f86c99...99.exe

windows7-x64

8

ab28f86c99...99.exe

windows10-2004-x64

1

Sharing

General

Target

ab28f86c994e17e689d252ddb88b7df23f0a444741711dd5ecd2e90a99c7a999
Size

601KB
Sample

221123-mar7bade79
MD5

4eed14837798242ab5c8801bd6a173da
SHA1

163899e9b9ad2bcc8decd2eb817a84ad09bbb1ac
SHA256

ab28f86c994e17e689d252ddb88b7df23f0a444741711dd5ecd2e90a99c7a999
SHA512

48636d9e2f455af389eb49f25b86cca5b1bc95adfeb69c6a40514f07df88d628b737927e78047147bd605278259bb8257a236da7918b97f54e832e774af5535a
SSDEEP

12288:yIny5DYTPIlTi4Ozewm4wHOu25nz04d4j7kExrjn8:0UTPKmPzewlwHN2dqjgkb

Score

8^/10

discovery

Static task

static1

Behavioral task

behavioral1

Sample

ab28f86c994e17e689d252ddb88b7df23f0a444741711dd5ecd2e90a99c7a999.exe

Resource

win7-20221111-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

ab28f86c994e17e689d252ddb88b7df23f0a444741711dd5ecd2e90a99c7a999.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  ab28f86c994e17e689d252ddb88b7df23f0a444741711dd5ecd2e90a99c7a999
- Size
  
  601KB
- MD5
  
  4eed14837798242ab5c8801bd6a173da
- SHA1
  
  163899e9b9ad2bcc8decd2eb817a84ad09bbb1ac
- SHA256
  
  ab28f86c994e17e689d252ddb88b7df23f0a444741711dd5ecd2e90a99c7a999
- SHA512
  
  48636d9e2f455af389eb49f25b86cca5b1bc95adfeb69c6a40514f07df88d628b737927e78047147bd605278259bb8257a236da7918b97f54e832e774af5535a
- SSDEEP
  
  12288:yIny5DYTPIlTi4Ozewm4wHOu25nz04d4j7kExrjn8:0UTPKmPzewlwHN2dqjgkb
Score

8^/10

discovery
- Drops file in Drivers directory
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy