Overview

overview

8

Static

static

0ff9db2b49...ba.exe

windows7-x64

8

0ff9db2b49...ba.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0ff9db2b49d214f7ff40dd4772b45016f643c8f29bf27626fe0cbbff8c0d9dba

  • Size

    603KB

  • Sample

    221123-mltjhsed47

  • MD5

    4163e63080b4f4783307a69ec09269f9

  • SHA1

    feb90ea1807d197b01c0e99f73d36762092d7996

  • SHA256

    0ff9db2b49d214f7ff40dd4772b45016f643c8f29bf27626fe0cbbff8c0d9dba

  • SHA512

    fa53e9281f5be55bcf5b05d1664f46301996f623e83692f12f07a80a0414ccd9050bcf5df427293285d8fd506cb18bbfe1cc364452c435e28551d9d2901b2cf3

  • SSDEEP

    12288:PIny5DYTmI8dvHDNFj4eOedrIZKAwLmk2YkGwqGgU70mQ:XUTmrdvHDNRs0IZK/D2YXwqGgUd

Score
8/10
discovery

Malware Config

Targets

    • Target

      0ff9db2b49d214f7ff40dd4772b45016f643c8f29bf27626fe0cbbff8c0d9dba

    • Size

      603KB

    • MD5

      4163e63080b4f4783307a69ec09269f9

    • SHA1

      feb90ea1807d197b01c0e99f73d36762092d7996

    • SHA256

      0ff9db2b49d214f7ff40dd4772b45016f643c8f29bf27626fe0cbbff8c0d9dba

    • SHA512

      fa53e9281f5be55bcf5b05d1664f46301996f623e83692f12f07a80a0414ccd9050bcf5df427293285d8fd506cb18bbfe1cc364452c435e28551d9d2901b2cf3

    • SSDEEP

      12288:PIny5DYTmI8dvHDNFj4eOedrIZKAwLmk2YkGwqGgU70mQ:XUTmrdvHDNRs0IZK/D2YXwqGgUd

    Score
    8/10
    discovery

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks