Overview

overview

10

Static

static

0855b1c74b...3f.exe

windows7-x64

10

0855b1c74b...3f.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0855b1c74b6da25e76a8e106a93a15828bcfe1d416457a07b188e32022273f3f

  • Size

    492KB

  • Sample

    221123-nbn2qabe5y

  • MD5

    2d40bd87fbfece88bf5a468f7d06d6d1

  • SHA1

    47be57218aae86422f866d538a95d91def7e7b27

  • SHA256

    0855b1c74b6da25e76a8e106a93a15828bcfe1d416457a07b188e32022273f3f

  • SHA512

    8c9d0cce86dc1c2371443811e7484258366df97157a380a905d65bc5e1557670b0a53742f9b9a447151deeb850eafa5010684aa8b5e46801251d93116f3c309e

  • SSDEEP

    6144:+Nc0p9tqViYN5CmV9Cd11lhR/+Dle/SwR00/evXW+rJN/JyyefTNCRC67QtVwd:RCWpDxVql+D6SwqfrtNJDaCk67QtV

Score
10/10
evasionpersistencetrojan

Malware Config

Targets

    • Target

      0855b1c74b6da25e76a8e106a93a15828bcfe1d416457a07b188e32022273f3f

    • Size

      492KB

    • MD5

      2d40bd87fbfece88bf5a468f7d06d6d1

    • SHA1

      47be57218aae86422f866d538a95d91def7e7b27

    • SHA256

      0855b1c74b6da25e76a8e106a93a15828bcfe1d416457a07b188e32022273f3f

    • SHA512

      8c9d0cce86dc1c2371443811e7484258366df97157a380a905d65bc5e1557670b0a53742f9b9a447151deeb850eafa5010684aa8b5e46801251d93116f3c309e

    • SSDEEP

      6144:+Nc0p9tqViYN5CmV9Cd11lhR/+Dle/SwR00/evXW+rJN/JyyefTNCRC67QtVwd:RCWpDxVql+D6SwqfrtNJDaCk67QtV

    Score
    10/10
    evasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Executes dropped EXE

    • Deletes itself

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks