Overview

overview

10

Static

static

2123c2f9a0...5f.exe

windows7-x64

10

2123c2f9a0...5f.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2123c2f9a0155ca1e4f2bf7060758befc8e8a3adee9e5a4b81dfe9d5dc6ddd5f

  • Size

    50KB

  • Sample

    221126-kxtmjsfe97

  • MD5

    0f1c899f9010843c6ec08d62e46c9890

  • SHA1

    d4f4fcd163078cda9b1f520488c3ec8873237520

  • SHA256

    2123c2f9a0155ca1e4f2bf7060758befc8e8a3adee9e5a4b81dfe9d5dc6ddd5f

  • SHA512

    29f3ebcf78b1fdb3e969b2cc3ff6340cd412bb9d5832379056a2fdfa60c1fe5d3df90dabbe21bf3ef6664b15dc1ce70299b6b01da7b56e004fb3cc673c3e1478

  • SSDEEP

    768:yx4fA5Gi3Q5VH300zYf5Ih8jQqcI7npws9sngnas3GsMsovTS9cJQTCLG/1H5:E4fADA52j9OniySqoI8

Score
10/10
persistence

Malware Config

Targets

    • Target

      2123c2f9a0155ca1e4f2bf7060758befc8e8a3adee9e5a4b81dfe9d5dc6ddd5f

    • Size

      50KB

    • MD5

      0f1c899f9010843c6ec08d62e46c9890

    • SHA1

      d4f4fcd163078cda9b1f520488c3ec8873237520

    • SHA256

      2123c2f9a0155ca1e4f2bf7060758befc8e8a3adee9e5a4b81dfe9d5dc6ddd5f

    • SHA512

      29f3ebcf78b1fdb3e969b2cc3ff6340cd412bb9d5832379056a2fdfa60c1fe5d3df90dabbe21bf3ef6664b15dc1ce70299b6b01da7b56e004fb3cc673c3e1478

    • SSDEEP

      768:yx4fA5Gi3Q5VH300zYf5Ih8jQqcI7npws9sngnas3GsMsovTS9cJQTCLG/1H5:E4fADA52j9OniySqoI8

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks