Overview

overview

10

Static

static

50eb2939eb...30.exe

windows7-x64

10

50eb2939eb...30.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    50eb2939eb9dca0708c905e659c40cc4722eb2d178a69d23eb28023f5f330430

  • Size

    50KB

  • Sample

    221126-k1lq4sff98

  • MD5

    fce9148493315ca2d1650cb6f22882d0

  • SHA1

    661929a6602af34c11a55a155d8a52c531c29988

  • SHA256

    50eb2939eb9dca0708c905e659c40cc4722eb2d178a69d23eb28023f5f330430

  • SHA512

    d7afab27eb2adca34b621c76c239cd864ef92187f3f8943939142014aa2da7bf652bd24acec0b29b892274e156f2c0a5aad35d507f1880209bf5ec2614b0ba24

  • SSDEEP

    768:++jx/Qc5QtHKaNlKanbuVv1rbERwif21kIZe2YtuFkkvj5V99999999aieCHRe/T:1jx/Qcut/qanIFbDif2LZe2YkaeEFN

Score
10/10
persistence

Malware Config

Targets

    • Target

      50eb2939eb9dca0708c905e659c40cc4722eb2d178a69d23eb28023f5f330430

    • Size

      50KB

    • MD5

      fce9148493315ca2d1650cb6f22882d0

    • SHA1

      661929a6602af34c11a55a155d8a52c531c29988

    • SHA256

      50eb2939eb9dca0708c905e659c40cc4722eb2d178a69d23eb28023f5f330430

    • SHA512

      d7afab27eb2adca34b621c76c239cd864ef92187f3f8943939142014aa2da7bf652bd24acec0b29b892274e156f2c0a5aad35d507f1880209bf5ec2614b0ba24

    • SSDEEP

      768:++jx/Qc5QtHKaNlKanbuVv1rbERwif21kIZe2YtuFkkvj5V99999999aieCHRe/T:1jx/Qcut/qanIFbDif2LZe2YkaeEFN

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks