Overview

overview

8

Static

static

4c5b025fa8...db.exe

windows7-x64

8

4c5b025fa8...db.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4c5b025fa80c437f82cf0f3de7b2c6552fcff579c412a869d0192c3f83bf1ddb

  • Size

    3.4MB

  • Sample

    221126-2qj8zaed3w

  • MD5

    e7e86bb56c73976d17606946d1ae7399

  • SHA1

    3df59e2654583268370a9406e1c7b20fd06be983

  • SHA256

    4c5b025fa80c437f82cf0f3de7b2c6552fcff579c412a869d0192c3f83bf1ddb

  • SHA512

    a886ae4bdcc5921036f82b9244878b03382e4a6c4a4c8d8058f573e0d83600bd960b34db65b4de4490667077995d2e6be8ad6031874f371a98440454d7c6df1a

  • SSDEEP

    98304:o3yobVyq03fv0oKATM6A/7zf8iEFb1OL6PVgNZzt:iyey13EoXM68vHO5fPeNZx

Score
8/10
discoverypersistence

Malware Config

Targets

    • Target

      4c5b025fa80c437f82cf0f3de7b2c6552fcff579c412a869d0192c3f83bf1ddb

    • Size

      3.4MB

    • MD5

      e7e86bb56c73976d17606946d1ae7399

    • SHA1

      3df59e2654583268370a9406e1c7b20fd06be983

    • SHA256

      4c5b025fa80c437f82cf0f3de7b2c6552fcff579c412a869d0192c3f83bf1ddb

    • SHA512

      a886ae4bdcc5921036f82b9244878b03382e4a6c4a4c8d8058f573e0d83600bd960b34db65b4de4490667077995d2e6be8ad6031874f371a98440454d7c6df1a

    • SSDEEP

      98304:o3yobVyq03fv0oKATM6A/7zf8iEFb1OL6PVgNZzt:iyey13EoXM68vHO5fPeNZx

    Score
    8/10
    discoverypersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1
T1053

Persistence

Registry Run Keys / Startup Folder

1
T1060

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

3
T1012

System Information Discovery

3
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks