Overview

overview

8

Static

static

c35b6cc45d...2a.exe

windows7-x64

8

c35b6cc45d...2a.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    c35b6cc45d9e8436f15ef7cadd4286901535a8237167e0ac3947501003b8dc2a

  • Size

    1020KB

  • Sample

    221127-epv8hsce8y

  • MD5

    013f77fdd27afe5aef5715789aa8900c

  • SHA1

    4f33702cb07601391f06819e15068f19edb93023

  • SHA256

    c35b6cc45d9e8436f15ef7cadd4286901535a8237167e0ac3947501003b8dc2a

  • SHA512

    d6e992f3b705ab37f1f83716f0bad78e38cf633568aec92c1e5468c01f73e514c5c3d5ddcd406e4a2bfac4a43656ef668c21bea262c45b1c86f90793e1c9cb7f

  • SSDEEP

    24576:tDgZvK66t6LaQAovx7X8NI4NYzHPQWGUop1gJAv7G8:tDgpK66ELaQpp7sNLYTQDp1gJAK8

Score
8/10
persistence

Malware Config

Targets

    • Target

      c35b6cc45d9e8436f15ef7cadd4286901535a8237167e0ac3947501003b8dc2a

    • Size

      1020KB

    • MD5

      013f77fdd27afe5aef5715789aa8900c

    • SHA1

      4f33702cb07601391f06819e15068f19edb93023

    • SHA256

      c35b6cc45d9e8436f15ef7cadd4286901535a8237167e0ac3947501003b8dc2a

    • SHA512

      d6e992f3b705ab37f1f83716f0bad78e38cf633568aec92c1e5468c01f73e514c5c3d5ddcd406e4a2bfac4a43656ef668c21bea262c45b1c86f90793e1c9cb7f

    • SSDEEP

      24576:tDgZvK66t6LaQAovx7X8NI4NYzHPQWGUop1gJAv7G8:tDgpK66ELaQpp7sNLYTQDp1gJAK8

    Score
    8/10
    persistence

    • Modifies Installed Components in the registry

      persistence

    • Uses the VBS compiler for execution

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks