Overview

overview

10

Static

static

5e78d238a5...36.exe

windows7-x64

10

5e78d238a5...36.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5e78d238a5488f0ec0fd5d58ed01ee841b0e7c18e07950e96d01884036ade336

  • Size

    50KB

  • Sample

    221126-kxl8gafe92

  • MD5

    09c79b06eed9c8505799737c5c54c980

  • SHA1

    ecc02859bc6ec52f7150720b18f0fba4ff45bc0f

  • SHA256

    5e78d238a5488f0ec0fd5d58ed01ee841b0e7c18e07950e96d01884036ade336

  • SHA512

    b5832582fb8bb73179f3a02207c1f0ae252ebee211e5f069bd1ec520349c5b7feb3a26d02e7d9f9536b8166d8c52361b622285e810f3acd87391577effd1fbeb

  • SSDEEP

    768:r/jdQ1g8xzlfGhvdZ0qtee8F0xZue1PfUnD5hXZLx1kfCE0Mwpgr/1H5:r/ZQu8DfGhwiPVuR911kfiMT

Score
10/10
persistence

Malware Config

Targets

    • Target

      5e78d238a5488f0ec0fd5d58ed01ee841b0e7c18e07950e96d01884036ade336

    • Size

      50KB

    • MD5

      09c79b06eed9c8505799737c5c54c980

    • SHA1

      ecc02859bc6ec52f7150720b18f0fba4ff45bc0f

    • SHA256

      5e78d238a5488f0ec0fd5d58ed01ee841b0e7c18e07950e96d01884036ade336

    • SHA512

      b5832582fb8bb73179f3a02207c1f0ae252ebee211e5f069bd1ec520349c5b7feb3a26d02e7d9f9536b8166d8c52361b622285e810f3acd87391577effd1fbeb

    • SSDEEP

      768:r/jdQ1g8xzlfGhvdZ0qtee8F0xZue1PfUnD5hXZLx1kfCE0Mwpgr/1H5:r/ZQu8DfGhwiPVuR911kfiMT

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks