Overview

overview

10

Static

static

13d6de3377...3f.exe

windows7-x64

10

13d6de3377...3f.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    13d6de33772ea72ee2c1c4d9ba9584d716222cf098c195632f6c41759e8d1b3f

  • Size

    50KB

  • Sample

    221126-kxvjvafe98

  • MD5

    fc3332bb6e15f35114a62f90346f0960

  • SHA1

    ea10165600d6a08be4fc7b946eb95943cdaf2ec8

  • SHA256

    13d6de33772ea72ee2c1c4d9ba9584d716222cf098c195632f6c41759e8d1b3f

  • SHA512

    840075f024b4684b0ad76edc28ce2b35cb0a555906aeaf750d5406ae9bc9973392ecf9e9369b9eff36671a7d65e1caa4d53970966a4372c4eef32e49d40c276d

  • SSDEEP

    768:IY4DxEiRFMw2809OEdJZeeFJj8H6WFFCWxbb2UiA0CTFtSqOrsfbr/1H5h:IY4KU27kMera2Fj5ft9eqOrW5X

Score
10/10
persistence

Malware Config

Targets

    • Target

      13d6de33772ea72ee2c1c4d9ba9584d716222cf098c195632f6c41759e8d1b3f

    • Size

      50KB

    • MD5

      fc3332bb6e15f35114a62f90346f0960

    • SHA1

      ea10165600d6a08be4fc7b946eb95943cdaf2ec8

    • SHA256

      13d6de33772ea72ee2c1c4d9ba9584d716222cf098c195632f6c41759e8d1b3f

    • SHA512

      840075f024b4684b0ad76edc28ce2b35cb0a555906aeaf750d5406ae9bc9973392ecf9e9369b9eff36671a7d65e1caa4d53970966a4372c4eef32e49d40c276d

    • SSDEEP

      768:IY4DxEiRFMw2809OEdJZeeFJj8H6WFFCWxbb2UiA0CTFtSqOrsfbr/1H5h:IY4KU27kMera2Fj5ft9eqOrW5X

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks