Overview

overview

7

Static

static

1

e8b4b52842...2a.exe

windows7-x64

7

e8b4b52842...2a.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e8b4b52842cf67efa4c44baa532f4ca68c4ec59d3dfd73952a85beab247f952a

  • Size

    408KB

  • Sample

    221124-kbjkfsbc78

  • MD5

    2d237a52c2212f0a064bb273914f6e99

  • SHA1

    c8381bce149b4876a570b9b4f3719632a2d0ba68

  • SHA256

    e8b4b52842cf67efa4c44baa532f4ca68c4ec59d3dfd73952a85beab247f952a

  • SHA512

    ecf735e0f60cc0750faa370e0f9f9a2a1c1f78eb36516b8af0df1d4d9eb0d2f10d43b3370abf397c1728d5abcda2b6885b76bf9c4ecb33dbcfebd7292f29ab12

  • SSDEEP

    6144:VMTCP9B0JhBtt4DAfhBZUI4v057UZvy25EDuE7UODTStFJAPqcs4hYIeqELUQM5:h9B0JhveE5PUI4v0yhtOvSKPqwrgUF

Score
7/10
persistence

Malware Config

Targets

    • Target

      e8b4b52842cf67efa4c44baa532f4ca68c4ec59d3dfd73952a85beab247f952a

    • Size

      408KB

    • MD5

      2d237a52c2212f0a064bb273914f6e99

    • SHA1

      c8381bce149b4876a570b9b4f3719632a2d0ba68

    • SHA256

      e8b4b52842cf67efa4c44baa532f4ca68c4ec59d3dfd73952a85beab247f952a

    • SHA512

      ecf735e0f60cc0750faa370e0f9f9a2a1c1f78eb36516b8af0df1d4d9eb0d2f10d43b3370abf397c1728d5abcda2b6885b76bf9c4ecb33dbcfebd7292f29ab12

    • SSDEEP

      6144:VMTCP9B0JhBtt4DAfhBZUI4v057UZvy25EDuE7UODTStFJAPqcs4hYIeqELUQM5:h9B0JhveE5PUI4v0yhtOvSKPqwrgUF

    Score
    7/10
    persistence

    • Deletes itself

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks