Overview

overview

8

Static

static

1

80226b5848...23.exe

windows7-x64

8

80226b5848...23.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    80226b584822802ef130737fec566961b827f94e70e6613b32bdfd8287b1ef23

  • Size

    183KB

  • Sample

    221124-ae4dxsec44

  • MD5

    0845d775f0f23161d418fa5847072eb3

  • SHA1

    5b17d66a4558aa22ec3b247be37440b86eb66f27

  • SHA256

    80226b584822802ef130737fec566961b827f94e70e6613b32bdfd8287b1ef23

  • SHA512

    1034dba9d1eaadf8290718002f229d7634176b98f63873891d2cd14e4e294836582de24f71e418520067a7abdd496c72cad6dbf7d8cd28322a8c36690c75d9eb

  • SSDEEP

    3072:l4URpNUUX6z/DBXJfdtWz/DAn5kUJGrvhF//MtmDaJ0pBK0M5QhWEbGCBERAaw6U:l4SUjhtm39UJGrvf0mNVM69bAaEU

Score
8/10
persistence

Malware Config

Targets

    • Target

      80226b584822802ef130737fec566961b827f94e70e6613b32bdfd8287b1ef23

    • Size

      183KB

    • MD5

      0845d775f0f23161d418fa5847072eb3

    • SHA1

      5b17d66a4558aa22ec3b247be37440b86eb66f27

    • SHA256

      80226b584822802ef130737fec566961b827f94e70e6613b32bdfd8287b1ef23

    • SHA512

      1034dba9d1eaadf8290718002f229d7634176b98f63873891d2cd14e4e294836582de24f71e418520067a7abdd496c72cad6dbf7d8cd28322a8c36690c75d9eb

    • SSDEEP

      3072:l4URpNUUX6z/DBXJfdtWz/DAn5kUJGrvhF//MtmDaJ0pBK0M5QhWEbGCBERAaw6U:l4SUjhtm39UJGrvf0mNVM69bAaEU

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Deletes itself

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks