20cb2b3fd36ce75489b10f864f9384fd86f8a41e189b5d8205c8eb3d0c9d8a5d | Triage

Submit
Reports

Overview

overview

8

Static

static

20cb2b3fd3...5d.exe

windows7-x64

8

20cb2b3fd3...5d.exe

windows10-2004-x64

8

Sharing

General

Target

20cb2b3fd36ce75489b10f864f9384fd86f8a41e189b5d8205c8eb3d0c9d8a5d
Size

601KB
Sample

221123-mkq21ahe7y
MD5

0c00383123b7cec1403250f37787e0ff
SHA1

799008ea0747148ac4d6ff49ebf2b193522e00cf
SHA256

20cb2b3fd36ce75489b10f864f9384fd86f8a41e189b5d8205c8eb3d0c9d8a5d
SHA512

8319c4d0b76403cf5cf95a485cf5b27355b49287e2e2980a6aed86d356620db2a08fbb11c8aa0c062cb353396560ad2b2775ecff4f22277aa67161cfed165214
SSDEEP

12288:6Iny5DYT9fih13A3+8JP9l0z3dMDtgdtN/hMO1NDeiZw4L0s:cUThih13Z60TeCpMmNDeJ4

Score

8^/10

discovery

Static task

static1

Behavioral task

behavioral1

Sample

20cb2b3fd36ce75489b10f864f9384fd86f8a41e189b5d8205c8eb3d0c9d8a5d.exe

Resource

win7-20220812-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

20cb2b3fd36ce75489b10f864f9384fd86f8a41e189b5d8205c8eb3d0c9d8a5d.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  20cb2b3fd36ce75489b10f864f9384fd86f8a41e189b5d8205c8eb3d0c9d8a5d
- Size
  
  601KB
- MD5
  
  0c00383123b7cec1403250f37787e0ff
- SHA1
  
  799008ea0747148ac4d6ff49ebf2b193522e00cf
- SHA256
  
  20cb2b3fd36ce75489b10f864f9384fd86f8a41e189b5d8205c8eb3d0c9d8a5d
- SHA512
  
  8319c4d0b76403cf5cf95a485cf5b27355b49287e2e2980a6aed86d356620db2a08fbb11c8aa0c062cb353396560ad2b2775ecff4f22277aa67161cfed165214
- SSDEEP
  
  12288:6Iny5DYT9fih13A3+8JP9l0z3dMDtgdtN/hMO1NDeiZw4L0s:cUThih13Z60TeCpMmNDeJ4
Score

8^/10

discovery
- Drops file in Drivers directory
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy