Overview

overview

7

Static

static

2014_11inf...44.exe

windows7-x64

7

2014_11inf...44.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f33643940d9706c8057a3daace99f34c54c57e9d00c60a908027db10455e30e4

  • Size

    208KB

  • Sample

    221124-px8tpahb51

  • MD5

    336e2dc228396e94df1608616a2cb4c2

  • SHA1

    41675b558370771d82c1d584b803ca10e4d28dbd

  • SHA256

    f33643940d9706c8057a3daace99f34c54c57e9d00c60a908027db10455e30e4

  • SHA512

    ef97557c4a3aeb78156b454895384fdb9166e143c658e7497d600a2c7b005388245600bc018b21f2eea24b6af4085f260c521efd5da0b1f676d1c0e6b3f60d76

  • SSDEEP

    6144:xfm+fU7jlbAHNl9ySx7IPKpq9wIgsMHAQ:Nm+fUlAlYup3DH

Score
7/10
persistence

Malware Config

Targets

    • Target

      2014_11informationen_finanzgruppe_000070002.000038622.771714407-0044.exe

    • Size

      277KB

    • MD5

      6f4d475eb0cb95a0bf8ab9825403253d

    • SHA1

      b2f4bf05e102823c97b2a6a4b00c4183073d93a4

    • SHA256

      cae0331cddf01777e3b1c275240b988c675527a4e9f72f91ffe4c0e8d68f73e4

    • SHA512

      384ccff8f308e901bde57c65f76aa0f501019cb709b47c041fa1c234d81f77da08980b7c757b22a83ebafe720a3aa7d676528a988d2a3b35cb80f5a91f51382e

    • SSDEEP

      6144:diaYUpwXV9RIKWn/TUVs8oL48N8lqFzc+tRJShtS:jzXrN8UbtPShI

    Score
    7/10
    persistence

    • Deletes itself

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks