Overview

overview

8

Static

static

ab28f86c99...99.exe

windows7-x64

8

ab28f86c99...99.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ab28f86c994e17e689d252ddb88b7df23f0a444741711dd5ecd2e90a99c7a999

  • Size

    601KB

  • Sample

    221123-mar7bade79

  • MD5

    4eed14837798242ab5c8801bd6a173da

  • SHA1

    163899e9b9ad2bcc8decd2eb817a84ad09bbb1ac

  • SHA256

    ab28f86c994e17e689d252ddb88b7df23f0a444741711dd5ecd2e90a99c7a999

  • SHA512

    48636d9e2f455af389eb49f25b86cca5b1bc95adfeb69c6a40514f07df88d628b737927e78047147bd605278259bb8257a236da7918b97f54e832e774af5535a

  • SSDEEP

    12288:yIny5DYTPIlTi4Ozewm4wHOu25nz04d4j7kExrjn8:0UTPKmPzewlwHN2dqjgkb

Score
8/10
discovery

Malware Config

Targets

    • Target

      ab28f86c994e17e689d252ddb88b7df23f0a444741711dd5ecd2e90a99c7a999

    • Size

      601KB

    • MD5

      4eed14837798242ab5c8801bd6a173da

    • SHA1

      163899e9b9ad2bcc8decd2eb817a84ad09bbb1ac

    • SHA256

      ab28f86c994e17e689d252ddb88b7df23f0a444741711dd5ecd2e90a99c7a999

    • SHA512

      48636d9e2f455af389eb49f25b86cca5b1bc95adfeb69c6a40514f07df88d628b737927e78047147bd605278259bb8257a236da7918b97f54e832e774af5535a

    • SSDEEP

      12288:yIny5DYTPIlTi4Ozewm4wHOu25nz04d4j7kExrjn8:0UTPKmPzewlwHN2dqjgkb

    Score
    8/10
    discovery

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks