Overview

overview

10

Static

static

ed839626fb...76.exe

windows7-x64

10

ed839626fb...76.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ed839626fb8174218c85df70fadcc32ebf0d39af566baddb8c147b9c253ef776

  • Size

    581KB

  • Sample

    221123-s1gfdsfg7t

  • MD5

    ff3c26b3ec2472412171287f95afa949

  • SHA1

    4702ee5d541f0e965d2f61f51fbd7aff7c32b75a

  • SHA256

    ed839626fb8174218c85df70fadcc32ebf0d39af566baddb8c147b9c253ef776

  • SHA512

    cb2c7986375c14d6861193ca49e7f4c477466f5c5bd013db0d1096dfdc6f3c8c7af39af91ffac6ecbe96eb3695f7165d0ad7d255971a1445ca9d65385f579121

  • SSDEEP

    12288:UsAqMGHGSX1388BxGVI43GVpinJMcOf9GUfRNNghIelbRHzJPlCBa5A:UsBbW1SaRsXGRTOBa5A

Score
10/10
persistence

Malware Config

Targets

    • Target

      ed839626fb8174218c85df70fadcc32ebf0d39af566baddb8c147b9c253ef776

    • Size

      581KB

    • MD5

      ff3c26b3ec2472412171287f95afa949

    • SHA1

      4702ee5d541f0e965d2f61f51fbd7aff7c32b75a

    • SHA256

      ed839626fb8174218c85df70fadcc32ebf0d39af566baddb8c147b9c253ef776

    • SHA512

      cb2c7986375c14d6861193ca49e7f4c477466f5c5bd013db0d1096dfdc6f3c8c7af39af91ffac6ecbe96eb3695f7165d0ad7d255971a1445ca9d65385f579121

    • SSDEEP

      12288:UsAqMGHGSX1388BxGVI43GVpinJMcOf9GUfRNNghIelbRHzJPlCBa5A:UsBbW1SaRsXGRTOBa5A

    Score
    10/10
    persistence

    • Modifies system executable filetype association

      persistence

    • Executes dropped EXE

    • Modifies Installed Components in the registry

      persistence

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Change Default File Association

1
T1042

Registry Run Keys / Startup Folder

2
T1060

Privilege Escalation

Defense Evasion

Modify Registry

3
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks