Overview

overview

10

Static

static

10

老毛桃�...��.exe

windows7-x64

1

老毛桃�...��.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8662f3dd0839a52468a43beeb19f34504d632e54137807e5996ae4d94d7ff98b

  • Size

    96KB

  • Sample

    221124-q3ctwagf32

  • MD5

    ece0fc7fcc0cbac0175cf312fa216c31

  • SHA1

    ee038546babc33ebd0056ab8d71c244e96b3b389

  • SHA256

    8662f3dd0839a52468a43beeb19f34504d632e54137807e5996ae4d94d7ff98b

  • SHA512

    a45fcc06bc3e342aafd23934de1daa15fdde65d457f27d61ac194710636ab0748151cddaabcad2246d8235120e48758cb465113db1df2d8444498fe7b5c6c830

  • SSDEEP

    3072:qaq38SKv58Y3EGc/V8Ruqbbemhbn1bJ3il6+TR1cPd:q7sF3ut3ybxUt9+Pd

Score
10/10
blackmoonpersistence

Malware Config

Targets

    • Target

      老毛桃自动安装软件.exe

    • Size

      252KB

    • MD5

      95bd21e090d619be1688fb893db3cea1

    • SHA1

      51ebb2b8e54305ecdff2b700d3091dc103da00e7

    • SHA256

      fd252b6504ee55166c98f403dd12959ef34b9d8834e43e807bd70e717c61b9ac

    • SHA512

      93aaa77eb0d295d7c362bb94bae1a0a570430e5b9a4dfff24cf03477274cb93445cdb4f4f0af72af400ac26eccdbfc392aa7dbf0518dd1d4bcd428c684408589

    • SSDEEP

      3072:Nr9KKtUStQJeWIaidfO5+DHkSu0iyhb3xfBTdWISictNJKsEiuBWdWZ:NQKtUoOeWIai9DzM07nx6ijTaY

    Score
    6/10
    persistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

2
T1112

Install Root Certificate

1
T1130

Credential Access

Discovery

System Information Discovery

2
T1082

Query Registry

1
T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks