Overview

overview

8

Static

static

f1622ea77f...53.exe

windows7-x64

8

f1622ea77f...53.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f1622ea77fd408ad2b2e00c7242ab7d2ad615eeeab7b0fabacc3300d6ab91353

  • Size

    818KB

  • Sample

    221124-psysxsdf42

  • MD5

    22b29dbbf877b0efb29a1562edfbdfb0

  • SHA1

    2c949188d409a8c86054fbf8617aa831ac5d55c5

  • SHA256

    f1622ea77fd408ad2b2e00c7242ab7d2ad615eeeab7b0fabacc3300d6ab91353

  • SHA512

    5a136965e823921caf2463b2343b204032a7febb7e7127e17165174ec4dc6d01bf9024e421c10bf5682a747f334f413d1c141b7a6e12383b61fed2189960199c

  • SSDEEP

    24576:6e4j93gWm2lQQBQG82n9qIFLJVX1iXA4/P:6e4hOGQQuX2nQIrTi7P

Score
8/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      f1622ea77fd408ad2b2e00c7242ab7d2ad615eeeab7b0fabacc3300d6ab91353

    • Size

      818KB

    • MD5

      22b29dbbf877b0efb29a1562edfbdfb0

    • SHA1

      2c949188d409a8c86054fbf8617aa831ac5d55c5

    • SHA256

      f1622ea77fd408ad2b2e00c7242ab7d2ad615eeeab7b0fabacc3300d6ab91353

    • SHA512

      5a136965e823921caf2463b2343b204032a7febb7e7127e17165174ec4dc6d01bf9024e421c10bf5682a747f334f413d1c141b7a6e12383b61fed2189960199c

    • SSDEEP

      24576:6e4j93gWm2lQQBQG82n9qIFLJVX1iXA4/P:6e4hOGQQuX2nQIrTi7P

    Score
    8/10
    discoveryevasionpersistencetrojan

    • Registers COM server for autorun

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Checks whether UAC is enabled

      evasiontrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks