Overview

overview

8

Static

static

1

8942cd0838...12.exe

windows7-x64

8

8942cd0838...12.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8942cd0838266f42eefe36dafc2adfc92128f977b989f529f1d0f308940d0e12

  • Size

    445KB

  • Sample

    221123-mzyqdsfe24

  • MD5

    726c8695d618826538d73ba0c5852694

  • SHA1

    f9850992a252bb48e06286b7d9054146199cee0d

  • SHA256

    8942cd0838266f42eefe36dafc2adfc92128f977b989f529f1d0f308940d0e12

  • SHA512

    3ab422c7cbf963e5dc022b94b56d4bb2aedd9fe59142ca2c140fb1d8be61a664cdfb2fc73c6eab13b602b02da1b6a32995ca6b42dab9e7af51ba537c72550adc

  • SSDEEP

    12288:CKcYJ/8GUwvJuMlKJROxx0Y/aRDNmILT2+eP:CYfAbOv/GD0Im+E

Score
8/10
discovery

Malware Config

Targets

    • Target

      8942cd0838266f42eefe36dafc2adfc92128f977b989f529f1d0f308940d0e12

    • Size

      445KB

    • MD5

      726c8695d618826538d73ba0c5852694

    • SHA1

      f9850992a252bb48e06286b7d9054146199cee0d

    • SHA256

      8942cd0838266f42eefe36dafc2adfc92128f977b989f529f1d0f308940d0e12

    • SHA512

      3ab422c7cbf963e5dc022b94b56d4bb2aedd9fe59142ca2c140fb1d8be61a664cdfb2fc73c6eab13b602b02da1b6a32995ca6b42dab9e7af51ba537c72550adc

    • SSDEEP

      12288:CKcYJ/8GUwvJuMlKJROxx0Y/aRDNmILT2+eP:CYfAbOv/GD0Im+E

    Score
    8/10
    discovery

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks