Overview

overview

8

Static

static

1bd6e6171c...39.exe

windows7-x64

8

1bd6e6171c...39.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1bd6e6171ce88274fe171b0217ce2f13c327d4595653bac15b2d38dc28cb2539

  • Size

    603KB

  • Sample

    221123-mk4cbsec87

  • MD5

    8e2504633b6fd960a05732b6690648c2

  • SHA1

    a3d48be96631642d5080493ea7aa0ab4128ef978

  • SHA256

    1bd6e6171ce88274fe171b0217ce2f13c327d4595653bac15b2d38dc28cb2539

  • SHA512

    9c77f4d4b07d59dd6a56477a716a60e22cc4191173403537103559be0b75abca051327dd4cb6ad15fffad170bb61a6de2eaca8622344366d278865b6b45ddb26

  • SSDEEP

    12288:1Iny5DYTTAhS+YiW2njM+IFHJkfzteSIyEePW:BUTTArRWNPkpIyEePW

Score
8/10
discovery

Malware Config

Targets

    • Target

      1bd6e6171ce88274fe171b0217ce2f13c327d4595653bac15b2d38dc28cb2539

    • Size

      603KB

    • MD5

      8e2504633b6fd960a05732b6690648c2

    • SHA1

      a3d48be96631642d5080493ea7aa0ab4128ef978

    • SHA256

      1bd6e6171ce88274fe171b0217ce2f13c327d4595653bac15b2d38dc28cb2539

    • SHA512

      9c77f4d4b07d59dd6a56477a716a60e22cc4191173403537103559be0b75abca051327dd4cb6ad15fffad170bb61a6de2eaca8622344366d278865b6b45ddb26

    • SSDEEP

      12288:1Iny5DYTTAhS+YiW2njM+IFHJkfzteSIyEePW:BUTTArRWNPkpIyEePW

    Score
    8/10
    discovery

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks