Overview

overview

8

Static

static

013c569ca6...a7.exe

windows7-x64

8

013c569ca6...a7.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    013c569ca65a31178022bda47e308b2b9c26eacc7742a2a96dcbdbdb67d34ea7

  • Size

    596KB

  • Sample

    221123-mmzrxsee43

  • MD5

    1ab5fb20c69a88fa6ecc43365dcbae7e

  • SHA1

    7647437f92858d9cdc6d7ea8b7e907f96b499248

  • SHA256

    013c569ca65a31178022bda47e308b2b9c26eacc7742a2a96dcbdbdb67d34ea7

  • SHA512

    04cf4bd6f25c7863a68801c19bf1f2e4168a352b9f343a516216889c0f64fa1af70efeae389642ee361ec742a0ddea821fdc97cee57c822ce54e0d489097b7be

  • SSDEEP

    12288:OIny5DYT/w/Jt2CjKQPAmVPtztU9ZzMuSAe+pOP8:QUT/w/zbjKKFze9ZHp7

Score
8/10
discovery

Malware Config

Targets

    • Target

      013c569ca65a31178022bda47e308b2b9c26eacc7742a2a96dcbdbdb67d34ea7

    • Size

      596KB

    • MD5

      1ab5fb20c69a88fa6ecc43365dcbae7e

    • SHA1

      7647437f92858d9cdc6d7ea8b7e907f96b499248

    • SHA256

      013c569ca65a31178022bda47e308b2b9c26eacc7742a2a96dcbdbdb67d34ea7

    • SHA512

      04cf4bd6f25c7863a68801c19bf1f2e4168a352b9f343a516216889c0f64fa1af70efeae389642ee361ec742a0ddea821fdc97cee57c822ce54e0d489097b7be

    • SSDEEP

      12288:OIny5DYT/w/Jt2CjKQPAmVPtztU9ZzMuSAe+pOP8:QUT/w/zbjKKFze9ZHp7

    Score
    8/10
    discovery

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks