Overview

overview

10

Static

static

8e4a70d9b3...7a.exe

windows7-x64

10

8e4a70d9b3...7a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8e4a70d9b3af0785dfbc74048f79bf5b5e6b6d30f53798e9f6495de6f6b66f7a

  • Size

    216KB

  • Sample

    221126-cb4xdsge3x

  • MD5

    cbef3401b1c1ddc8f5165bc3fd796c15

  • SHA1

    4cb40a325909b3980a1c23b01393f441ef2ae54c

  • SHA256

    8e4a70d9b3af0785dfbc74048f79bf5b5e6b6d30f53798e9f6495de6f6b66f7a

  • SHA512

    8acca2c3449c135a1bf7980ec8ec0734ed722b9630c822306840b7cdb193e6634273e387bbf6ad200adf3162693c964dff35da3cdacf08766d5ebb89f6aa69ae

  • SSDEEP

    3072:MRAhhcsxgAJuK7bZD01GoI0ONIGpPlGvOOGCc0Hjv5qPr2CHExvwm1xpb+l7V/Z/:MRAhhJxX7bNI5dvqbMjvUPrdHCxpKl7z

Score
10/10
persistence

Malware Config

Targets

    • Target

      8e4a70d9b3af0785dfbc74048f79bf5b5e6b6d30f53798e9f6495de6f6b66f7a

    • Size

      216KB

    • MD5

      cbef3401b1c1ddc8f5165bc3fd796c15

    • SHA1

      4cb40a325909b3980a1c23b01393f441ef2ae54c

    • SHA256

      8e4a70d9b3af0785dfbc74048f79bf5b5e6b6d30f53798e9f6495de6f6b66f7a

    • SHA512

      8acca2c3449c135a1bf7980ec8ec0734ed722b9630c822306840b7cdb193e6634273e387bbf6ad200adf3162693c964dff35da3cdacf08766d5ebb89f6aa69ae

    • SSDEEP

      3072:MRAhhcsxgAJuK7bZD01GoI0ONIGpPlGvOOGCc0Hjv5qPr2CHExvwm1xpb+l7V/Z/:MRAhhJxX7bNI5dvqbMjvUPrdHCxpKl7z

    Score
    10/10
    persistence

    • Modifies system executable filetype association

      persistence

    • Executes dropped EXE

    • Modifies Installed Components in the registry

      persistence

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks