Overview

overview

7

Static

static

a344b76f0a...01.exe

windows7-x64

7

a344b76f0a...01.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a344b76f0a4a1d5be90dd9c4b7d8f9f70bcb8db81a56210b9e5ea38c03441c01

  • Size

    88KB

  • Sample

    221123-w88rdsec28

  • MD5

    4a751d214c4288d8ecff827600eb2da0

  • SHA1

    d4099af877347d4b356dd925c8ec6e4d2275dd5f

  • SHA256

    a344b76f0a4a1d5be90dd9c4b7d8f9f70bcb8db81a56210b9e5ea38c03441c01

  • SHA512

    9a65aecaa060a854db2e0798fcd9677e566448874f8ee45ad667f6619a3760895a1644499887b918b1c5122422a00c42eb74bb36f0bbede0b4d723989b7800a9

  • SSDEEP

    1536:WeWTfSa1figrpr6/rAR/0n27IvJguHs/2737IMlfPA:mSWFrqUR/029MlfPA

Score
7/10

Malware Config

Targets

    • Target

      a344b76f0a4a1d5be90dd9c4b7d8f9f70bcb8db81a56210b9e5ea38c03441c01

    • Size

      88KB

    • MD5

      4a751d214c4288d8ecff827600eb2da0

    • SHA1

      d4099af877347d4b356dd925c8ec6e4d2275dd5f

    • SHA256

      a344b76f0a4a1d5be90dd9c4b7d8f9f70bcb8db81a56210b9e5ea38c03441c01

    • SHA512

      9a65aecaa060a854db2e0798fcd9677e566448874f8ee45ad667f6619a3760895a1644499887b918b1c5122422a00c42eb74bb36f0bbede0b4d723989b7800a9

    • SSDEEP

      1536:WeWTfSa1figrpr6/rAR/0n27IvJguHs/2737IMlfPA:mSWFrqUR/029MlfPA

    Score
    7/10

    • Deletes itself

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

2
T1082

Process Discovery

1
T1057

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks