Overview

overview

6

Static

static

5

1fdc3d89e3...1b.exe

windows7-x64

6

1fdc3d89e3...1b.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1fdc3d89e31203d01222c475dc1dec60cf60f2793c4b609c622c52e5d58daf1b

  • Size

    2.8MB

  • Sample

    221126-ejskfaaf27

  • MD5

    5aceb213572bd675340c505c543e6fdf

  • SHA1

    03991a3739350a05476172a14a9a647e9d125943

  • SHA256

    1fdc3d89e31203d01222c475dc1dec60cf60f2793c4b609c622c52e5d58daf1b

  • SHA512

    affd633e0c186679bf0bf764fd046b6a22c86c644c4783eff9b7192b145fe7c56a5dda012d113e9e60ecf8f1b8762abd5e4656d521e4d99769d8d8ad36272c5e

  • SSDEEP

    49152:eVg5tQ7auJ5EiveKODgHPdWcYdHxL3/lCdLtcMoKBO3F1oNhXLgzx2avHBe+4s:gg567GGPdWcURLSLEKBOft2afBe+4s

Score
6/10
collectionpersistence

Malware Config

Targets

    • Target

      1fdc3d89e31203d01222c475dc1dec60cf60f2793c4b609c622c52e5d58daf1b

    • Size

      2.8MB

    • MD5

      5aceb213572bd675340c505c543e6fdf

    • SHA1

      03991a3739350a05476172a14a9a647e9d125943

    • SHA256

      1fdc3d89e31203d01222c475dc1dec60cf60f2793c4b609c622c52e5d58daf1b

    • SHA512

      affd633e0c186679bf0bf764fd046b6a22c86c644c4783eff9b7192b145fe7c56a5dda012d113e9e60ecf8f1b8762abd5e4656d521e4d99769d8d8ad36272c5e

    • SSDEEP

      49152:eVg5tQ7auJ5EiveKODgHPdWcYdHxL3/lCdLtcMoKBO3F1oNhXLgzx2avHBe+4s:gg567GGPdWcURLSLEKBOft2afBe+4s

    Score
    6/10
    collectionpersistence

    • Accesses Microsoft Outlook profiles

      collection

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks