Overview

overview

8

Static

static

6626cd67f0...bd.exe

windows7-x64

8

6626cd67f0...bd.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6626cd67f01274254abfb1a9be9f0c186297914213cbb566250312dfc31d80bd

  • Size

    1.8MB

  • Sample

    221125-zpsgvaed76

  • MD5

    e813ff8d58b27f5a604b50052ab70c66

  • SHA1

    154aeeeaeba842879e4e7e5d706d9766fd0d68e4

  • SHA256

    6626cd67f01274254abfb1a9be9f0c186297914213cbb566250312dfc31d80bd

  • SHA512

    aed10d6cf8ca6ecf0315a272db3d95532e1000ff1c2436deb70e307f115fcf0fcbcfaa17fc8101d417b45c6c2922827c3049ced685e21262c59a153fb84e2170

  • SSDEEP

    49152:o31v2tsNsAhbn/sP/AQN3DhuDSoDTAKmmpVR:41vasNnnUPV37KAK/nR

Score
8/10
collectionpersistence

Malware Config

Targets

    • Target

      6626cd67f01274254abfb1a9be9f0c186297914213cbb566250312dfc31d80bd

    • Size

      1.8MB

    • MD5

      e813ff8d58b27f5a604b50052ab70c66

    • SHA1

      154aeeeaeba842879e4e7e5d706d9766fd0d68e4

    • SHA256

      6626cd67f01274254abfb1a9be9f0c186297914213cbb566250312dfc31d80bd

    • SHA512

      aed10d6cf8ca6ecf0315a272db3d95532e1000ff1c2436deb70e307f115fcf0fcbcfaa17fc8101d417b45c6c2922827c3049ced685e21262c59a153fb84e2170

    • SSDEEP

      49152:o31v2tsNsAhbn/sP/AQN3DhuDSoDTAKmmpVR:41vasNnnUPV37KAK/nR

    Score
    8/10
    collectionpersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Accesses Microsoft Outlook profiles

      collection

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks