Overview

overview

9

Static

static

9

537e717a68...85.exe

windows7-x64

9

537e717a68...85.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    537e717a6810f2185975e05febe28252adfc8049be8c5dc424b0f6af2dab6385

  • Size

    288KB

  • Sample

    221123-rmn3msca5w

  • MD5

    fc80a8ae94d93c2f7c38efa234dd4502

  • SHA1

    63607c3a39321d884d54555d6214b4f4fefe0cc7

  • SHA256

    537e717a6810f2185975e05febe28252adfc8049be8c5dc424b0f6af2dab6385

  • SHA512

    2375b2174af1ddd7817f67d135ca8f23e81850b9e60be3e86093ed1e1e62744f9d5025f8d58ef74cde510f827a921008f4e62f9c1800e1d026e1057666a59e2a

  • SSDEEP

    6144:1xLHZdXMuU/Dyy+BXJJ91Jc2jbUjO5/g9Cl2:j5d8uULyPv5cqGO5Cy

Score
9/10
persistence

Malware Config

Targets

    • Target

      537e717a6810f2185975e05febe28252adfc8049be8c5dc424b0f6af2dab6385

    • Size

      288KB

    • MD5

      fc80a8ae94d93c2f7c38efa234dd4502

    • SHA1

      63607c3a39321d884d54555d6214b4f4fefe0cc7

    • SHA256

      537e717a6810f2185975e05febe28252adfc8049be8c5dc424b0f6af2dab6385

    • SHA512

      2375b2174af1ddd7817f67d135ca8f23e81850b9e60be3e86093ed1e1e62744f9d5025f8d58ef74cde510f827a921008f4e62f9c1800e1d026e1057666a59e2a

    • SSDEEP

      6144:1xLHZdXMuU/Dyy+BXJJ91Jc2jbUjO5/g9Cl2:j5d8uULyPv5cqGO5Cy

    Score
    9/10
    persistence

    • Molebox Virtualization software

      Detects file using Molebox Virtualization software.

    • Executes dropped EXE

    • Deletes itself

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks