Overview

overview

10

Static

static

fefb2abf28...43.exe

windows7-x64

10

fefb2abf28...43.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fefb2abf288ec24b20189f9a2b6392a3ad5e1ae2b0361549e80c23eef1ebe343

  • Size

    8.2MB

  • Sample

    221125-lgen5agb45

  • MD5

    34f174fd05058e324d742ee277aa0b9d

  • SHA1

    b2cdc1fd120e39f16a577f34646b29c7c333440f

  • SHA256

    fefb2abf288ec24b20189f9a2b6392a3ad5e1ae2b0361549e80c23eef1ebe343

  • SHA512

    ae5aa22482752fec16228b531b6e4d26fcf3e6c9dd0509a1cb26d5e5ae941aa3d7cfd424aa8b04900d66775672ae15012357cde963d1f965aaeaa8365ed3df7d

  • SSDEEP

    196608:TLIL9LILLLIL9LILLLIL9LILLLIL9LIL:TLIL9LILLLIL9LILLLIL9LILLLIL9LIL

Score
10/10
persistence

Malware Config

Targets

    • Target

      fefb2abf288ec24b20189f9a2b6392a3ad5e1ae2b0361549e80c23eef1ebe343

    • Size

      8.2MB

    • MD5

      34f174fd05058e324d742ee277aa0b9d

    • SHA1

      b2cdc1fd120e39f16a577f34646b29c7c333440f

    • SHA256

      fefb2abf288ec24b20189f9a2b6392a3ad5e1ae2b0361549e80c23eef1ebe343

    • SHA512

      ae5aa22482752fec16228b531b6e4d26fcf3e6c9dd0509a1cb26d5e5ae941aa3d7cfd424aa8b04900d66775672ae15012357cde963d1f965aaeaa8365ed3df7d

    • SSDEEP

      196608:TLIL9LILLLIL9LILLLIL9LILLLIL9LIL:TLIL9LILLLIL9LILLLIL9LILLLIL9LIL

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks