Overview

overview

10

Static

static

204cf7c239...7f.exe

windows7-x64

10

204cf7c239...7f.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    204cf7c239a1e9d374cdc5b653d0e87b5b8a701f85ba382f6df474d0e03bf97f

  • Size

    72KB

  • Sample

    221123-xln9xafd27

  • MD5

    45fb891857d5820c940fe056d5668570

  • SHA1

    772d858e3a9da147fadcff9672bf8608c30e3009

  • SHA256

    204cf7c239a1e9d374cdc5b653d0e87b5b8a701f85ba382f6df474d0e03bf97f

  • SHA512

    70364f28b39f1de585867d41cefab19fcd55c93f302578edb9ed8bdec186fc266f36bfd8eb039d9cb184bce65ae18374b93c9bfcb3f636e16232913dc4e2e13e

  • SSDEEP

    384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2W:ipQNwC3BEddsEqOt/hyJF+x3BEJwRr6

Score
10/10
evasion

Malware Config

Targets

    • Target

      204cf7c239a1e9d374cdc5b653d0e87b5b8a701f85ba382f6df474d0e03bf97f

    • Size

      72KB

    • MD5

      45fb891857d5820c940fe056d5668570

    • SHA1

      772d858e3a9da147fadcff9672bf8608c30e3009

    • SHA256

      204cf7c239a1e9d374cdc5b653d0e87b5b8a701f85ba382f6df474d0e03bf97f

    • SHA512

      70364f28b39f1de585867d41cefab19fcd55c93f302578edb9ed8bdec186fc266f36bfd8eb039d9cb184bce65ae18374b93c9bfcb3f636e16232913dc4e2e13e

    • SSDEEP

      384:i6wayA+1mwnA353BXR+oGfP5d/ZBHXME+l93qPAqee/w6yJ/wWD+S83BXR+oGf2W:ipQNwC3BEddsEqOt/hyJF+x3BEJwRr6

    Score
    10/10
    evasion

    • Modifies visibility of file extensions in Explorer

      evasion

    • Disables RegEdit via registry modification

      evasion

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hidden Files and Directories

1
T1158

Privilege Escalation

Defense Evasion

Hidden Files and Directories

1
T1158

Modify Registry

2
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks