Overview

overview

10

Static

static

3e5020207c...26.exe

windows7-x64

10

3e5020207c...26.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3e5020207c909191bfef2393b16db1ec0129d29cb1adc49c5b1ebbfce66c7826

  • Size

    50KB

  • Sample

    221126-k1mcmsff99

  • MD5

    0b251bb98fd6c6802a4bea1b327e0be0

  • SHA1

    f767bfff0b930aa22ef3cf819130d516a3d68705

  • SHA256

    3e5020207c909191bfef2393b16db1ec0129d29cb1adc49c5b1ebbfce66c7826

  • SHA512

    e2c6884d1fb385e575f292ac52c120795e464926282106516de2190f831633cb71a8bfdd27c35277ec27f7bff83880f06cd46df510ebc819c878ff3a14dd23c5

  • SSDEEP

    768:iXWAG1sG0bUX5mVy/vdiSrJFgwZB6Tc0TGOfs7cGzf+96fEEJg/1H5R:i4dpmVy9iS8wX6A0TGCOfgPEcf

Score
10/10
persistence

Malware Config

Targets

    • Target

      3e5020207c909191bfef2393b16db1ec0129d29cb1adc49c5b1ebbfce66c7826

    • Size

      50KB

    • MD5

      0b251bb98fd6c6802a4bea1b327e0be0

    • SHA1

      f767bfff0b930aa22ef3cf819130d516a3d68705

    • SHA256

      3e5020207c909191bfef2393b16db1ec0129d29cb1adc49c5b1ebbfce66c7826

    • SHA512

      e2c6884d1fb385e575f292ac52c120795e464926282106516de2190f831633cb71a8bfdd27c35277ec27f7bff83880f06cd46df510ebc819c878ff3a14dd23c5

    • SSDEEP

      768:iXWAG1sG0bUX5mVy/vdiSrJFgwZB6Tc0TGOfs7cGzf+96fEEJg/1H5R:i4dpmVy9iS8wX6A0TGCOfgPEcf

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks