Overview

overview

10

Static

static

3220e30ae2...d7.exe

windows7-x64

10

3220e30ae2...d7.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3220e30ae2d03f98c051483106c741c596811d4c82f771aae72518f16ce127d7

  • Size

    50KB

  • Sample

    221126-kxq7esfe96

  • MD5

    2d2df49b580e91eb55d764c8fd664110

  • SHA1

    71428b75ab0778d9351af13af19a14ab798a3ff6

  • SHA256

    3220e30ae2d03f98c051483106c741c596811d4c82f771aae72518f16ce127d7

  • SHA512

    dce66f84610e007ca53e2042f504b090e950272360a4129ae6d1c638c04c935dea0a52d8a6aac77e62dd8ab05e5c76b349fe372e0fba29b387558e03f8bde19d

  • SSDEEP

    768:6IHqLwFwert/QJevGR5K/ghP0KLLwJQ5emxkfAFwr8Bg8UszuB8gh/1H5:6TLwxFMevGfQ00KoJWxkYFwunzoR

Score
10/10
persistence

Malware Config

Targets

    • Target

      3220e30ae2d03f98c051483106c741c596811d4c82f771aae72518f16ce127d7

    • Size

      50KB

    • MD5

      2d2df49b580e91eb55d764c8fd664110

    • SHA1

      71428b75ab0778d9351af13af19a14ab798a3ff6

    • SHA256

      3220e30ae2d03f98c051483106c741c596811d4c82f771aae72518f16ce127d7

    • SHA512

      dce66f84610e007ca53e2042f504b090e950272360a4129ae6d1c638c04c935dea0a52d8a6aac77e62dd8ab05e5c76b349fe372e0fba29b387558e03f8bde19d

    • SSDEEP

      768:6IHqLwFwert/QJevGR5K/ghP0KLLwJQ5emxkfAFwr8Bg8UszuB8gh/1H5:6TLwxFMevGfQ00KoJWxkYFwunzoR

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks