7c42515a6406bd529553d4066b8fc8dea9fe6ccbe501ddc61be694705fa7ef05

Analysis

max time kernel
125s
max time network
137s
platform
windows10-2004_x64
resource
win10v2004-20220901-en
resource tags

arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system
submitted
29/11/2022, 13:27

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

7c42515a6406bd529553d4066b8fc8dea9fe6ccbe501ddc61be694705fa7ef05.exe
Size

143KB
MD5

2e05ae1860d7328d1a622e1ad9322e20
SHA1

7af7682a7958f9f1252b00bdd034726afdf8b061
SHA256

7c42515a6406bd529553d4066b8fc8dea9fe6ccbe501ddc61be694705fa7ef05
SHA512

079afd778c7ba5308e5e3e46dca1ef5f78ec0554abb247b883430eee6f9e65d8cab07f072f5b1be3dfc1cdc0646aaed21ff5e28c4fcd8b05587beb745a348b46
SSDEEP

3072:9sD2ADkpFGkTXlDJA6ba2esDetNxVgbTGV9XY:9plzpTVDVa2en/V6Mp

Score

6^/10

persistence

Malware Config

Signatures

Adds Run key to start application 2 TTPs 1 IoCs

persistence

Registry Run Keys / Startup Folder

T1060

Modify Registry

T1112

description	ioc	Process
Set value (str)	\REGISTRY\USER\S-1-5-21-929662420-1054238289-2961194603-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ = "C:\\"	7c42515a6406bd529553d4066b8fc8dea9fe6ccbe501ddc61be694705fa7ef05.exe

C:\Users\Admin\AppData\Local\Temp\7c42515a6406bd529553d4066b8fc8dea9fe6ccbe501ddc61be694705fa7ef05.exe
"C:\Users\Admin\AppData\Local\Temp\7c42515a6406bd529553d4066b8fc8dea9fe6ccbe501ddc61be694705fa7ef05.exe"
1⤵
- Adds Run key to start application
PID:5040

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

T1060

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads