Overview

overview

7

Static

static

ecd9d925c1...97.exe

windows7-x64

7

ecd9d925c1...97.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ecd9d925c12e694c8abc30f785b00b4e6bf7718f33d08b2703c014fd4c06ec97

  • Size

    605KB

  • Sample

    221126-knef9sab9t

  • MD5

    7a2faea482515e8751b5147ed5df3821

  • SHA1

    9fe1dde50ef1dd314e9aa3c76ed565880881e073

  • SHA256

    ecd9d925c12e694c8abc30f785b00b4e6bf7718f33d08b2703c014fd4c06ec97

  • SHA512

    8a33c65f20fc63f28631b0b0fc39f7ec19ac1f1691df42856abd1adf379cefcce74412f54afb75c86e38ea38fc111ace4bc137225fecd9e8f8f71d36356e36cb

  • SSDEEP

    12288:r1Ia5uiSC/HRZMOwm6QR2Q+4C17gLX7pzF/6nNWIRWTWTiCn:r3Em6aNq17m9zF/6N

Score
7/10
persistence

Malware Config

Targets

    • Target

      ecd9d925c12e694c8abc30f785b00b4e6bf7718f33d08b2703c014fd4c06ec97

    • Size

      605KB

    • MD5

      7a2faea482515e8751b5147ed5df3821

    • SHA1

      9fe1dde50ef1dd314e9aa3c76ed565880881e073

    • SHA256

      ecd9d925c12e694c8abc30f785b00b4e6bf7718f33d08b2703c014fd4c06ec97

    • SHA512

      8a33c65f20fc63f28631b0b0fc39f7ec19ac1f1691df42856abd1adf379cefcce74412f54afb75c86e38ea38fc111ace4bc137225fecd9e8f8f71d36356e36cb

    • SSDEEP

      12288:r1Ia5uiSC/HRZMOwm6QR2Q+4C17gLX7pzF/6nNWIRWTWTiCn:r3Em6aNq17m9zF/6N

    Score
    7/10
    persistence

    • Uses the VBS compiler for execution

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scripting

1
T1064

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Scripting

1
T1064

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks