Overview

overview

10

Static

static

bf93163151...ae.exe

windows7-x64

10

bf93163151...ae.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bf9316315173b499a510eeafa2a9b0b702b454d7c76caf89ffde6e6180fe83ae

  • Size

    50KB

  • Sample

    221126-k1eb2aaf9v

  • MD5

    b7cd3849a3ca9ba6b40ccac1056a5da0

  • SHA1

    93ff07d14258f0f3dcd3431ea50d76dfb20d4fc5

  • SHA256

    bf9316315173b499a510eeafa2a9b0b702b454d7c76caf89ffde6e6180fe83ae

  • SHA512

    59b3103db7ef4334cc7c1e8c24203f0d1e36fbee84734b105313d056845d24c8d816def517e5db8785ee61ee4be3168440acf457ef10fd25fa28200fe556a011

  • SSDEEP

    768:bryvyxjOlGP5RK+96nHiMFPum019xawqwPLVPz4vWlQRxipaqZNGkKC/1H5:KyglVe6Joz1yw7zq+QCpfZX

Score
10/10
persistence

Malware Config

Targets

    • Target

      bf9316315173b499a510eeafa2a9b0b702b454d7c76caf89ffde6e6180fe83ae

    • Size

      50KB

    • MD5

      b7cd3849a3ca9ba6b40ccac1056a5da0

    • SHA1

      93ff07d14258f0f3dcd3431ea50d76dfb20d4fc5

    • SHA256

      bf9316315173b499a510eeafa2a9b0b702b454d7c76caf89ffde6e6180fe83ae

    • SHA512

      59b3103db7ef4334cc7c1e8c24203f0d1e36fbee84734b105313d056845d24c8d816def517e5db8785ee61ee4be3168440acf457ef10fd25fa28200fe556a011

    • SSDEEP

      768:bryvyxjOlGP5RK+96nHiMFPum019xawqwPLVPz4vWlQRxipaqZNGkKC/1H5:KyglVe6Joz1yw7zq+QCpfZX

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks