Overview

overview

8

Static

static

1

c575409cb6...91.exe

windows7-x64

8

c575409cb6...91.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c575409cb6b09f832ca768a39d9916a3c66ed51928a279b8e59ae08861f3ea91

  • Size

    221KB

  • Sample

    221124-j2qwsaaf55

  • MD5

    02e49a8bc9d4ac7da3c6113e6dcb8406

  • SHA1

    1f2b6506cb8e009b1c8f8e6bf299cf38b2189c70

  • SHA256

    c575409cb6b09f832ca768a39d9916a3c66ed51928a279b8e59ae08861f3ea91

  • SHA512

    e31299947b8ec85b63ec9142a64f8d72f440cdc22dbd42104b6a5daf20808fd1bfd475497a020fe7340e10aac4a351afdae2f7bbb5840a49812fda5bb4299da3

  • SSDEEP

    6144:kDpoev/lF92hp82fx8jKs85K8TQWhAoQWv:i/lF6p82rhAoFv

Score
8/10
persistence

Malware Config

Targets

    • Target

      c575409cb6b09f832ca768a39d9916a3c66ed51928a279b8e59ae08861f3ea91

    • Size

      221KB

    • MD5

      02e49a8bc9d4ac7da3c6113e6dcb8406

    • SHA1

      1f2b6506cb8e009b1c8f8e6bf299cf38b2189c70

    • SHA256

      c575409cb6b09f832ca768a39d9916a3c66ed51928a279b8e59ae08861f3ea91

    • SHA512

      e31299947b8ec85b63ec9142a64f8d72f440cdc22dbd42104b6a5daf20808fd1bfd475497a020fe7340e10aac4a351afdae2f7bbb5840a49812fda5bb4299da3

    • SSDEEP

      6144:kDpoev/lF92hp82fx8jKs85K8TQWhAoQWv:i/lF6p82rhAoFv

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks