Overview

overview

8

Static

static

1

2197b53238...2f.exe

windows7-x64

8

2197b53238...2f.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2197b5323822a9b6bea68a4edc801ff71ece53a7a955068ce683bc6c962aeb2f

  • Size

    447KB

  • Sample

    221128-d5mqmsbh78

  • MD5

    fac186247288f0315e3ea6dde817bcfc

  • SHA1

    fb4ae259be6f4d2f45e786462c3e36dc42236f6e

  • SHA256

    2197b5323822a9b6bea68a4edc801ff71ece53a7a955068ce683bc6c962aeb2f

  • SHA512

    c787e76a81ebd1f5eb8955f818a49db4062e07c0ec4650e72d3f8947f9de93aaa43e51b78a3d57d26084608ee4a234778e04f4a43c37f4219441d5130f49cbed

  • SSDEEP

    12288:We0oY2GvE1WB3q4jyApWYvwK73xNOx8ITlmBNZpEGDV:We/bGv9ZB7BNOx8I8TZDV

Score
8/10
discovery

Malware Config

Targets

    • Target

      2197b5323822a9b6bea68a4edc801ff71ece53a7a955068ce683bc6c962aeb2f

    • Size

      447KB

    • MD5

      fac186247288f0315e3ea6dde817bcfc

    • SHA1

      fb4ae259be6f4d2f45e786462c3e36dc42236f6e

    • SHA256

      2197b5323822a9b6bea68a4edc801ff71ece53a7a955068ce683bc6c962aeb2f

    • SHA512

      c787e76a81ebd1f5eb8955f818a49db4062e07c0ec4650e72d3f8947f9de93aaa43e51b78a3d57d26084608ee4a234778e04f4a43c37f4219441d5130f49cbed

    • SSDEEP

      12288:We0oY2GvE1WB3q4jyApWYvwK73xNOx8ITlmBNZpEGDV:We/bGv9ZB7BNOx8I8TZDV

    Score
    8/10
    discovery

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks