Overview

overview

8

Static

static

1

c47151db8a...01.exe

windows7-x64

8

c47151db8a...01.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c47151db8ac80143c3783d3e37a1b38ed09cecf260223ab32d0db3797f361201

  • Size

    224KB

  • Sample

    221124-ae724sec53

  • MD5

    00e6b3f0b0e0ae0e4651334075d5249c

  • SHA1

    24578422c6ba473ca94b304ccfb186bdc9789469

  • SHA256

    c47151db8ac80143c3783d3e37a1b38ed09cecf260223ab32d0db3797f361201

  • SHA512

    6c7e8e77ed5d389da4c1a39bbd005081adc91926e5a55496a84ad6078868da560ff8ae71d0e85978f631c2308c117d9397232c5213de1d39fb1b12b08101eabd

  • SSDEEP

    6144:h4SUjhtb9g5mBmB5r8w/9WeIs1bh40HhdT/7koGzpqT/slZVTOpUd:6mm+5r8wMK340P/7kowptBFd

Score
8/10
persistence

Malware Config

Targets

    • Target

      c47151db8ac80143c3783d3e37a1b38ed09cecf260223ab32d0db3797f361201

    • Size

      224KB

    • MD5

      00e6b3f0b0e0ae0e4651334075d5249c

    • SHA1

      24578422c6ba473ca94b304ccfb186bdc9789469

    • SHA256

      c47151db8ac80143c3783d3e37a1b38ed09cecf260223ab32d0db3797f361201

    • SHA512

      6c7e8e77ed5d389da4c1a39bbd005081adc91926e5a55496a84ad6078868da560ff8ae71d0e85978f631c2308c117d9397232c5213de1d39fb1b12b08101eabd

    • SSDEEP

      6144:h4SUjhtb9g5mBmB5r8w/9WeIs1bh40HhdT/7koGzpqT/slZVTOpUd:6mm+5r8wMK340P/7kowptBFd

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Deletes itself

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks