Overview

overview

8

Static

static

634497ad58...b0.exe

windows7-x64

8

634497ad58...b0.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    634497ad58cc0f208b2d6ca36c28369bc728ea1288941bf07eb7808d1176a0b0

  • Size

    774KB

  • Sample

    221202-3rsr6sfb75

  • MD5

    1ba6fcaa323192554b1a461597c6c2fe

  • SHA1

    7432baad8edfa44daad51d67d19c523a352a2842

  • SHA256

    634497ad58cc0f208b2d6ca36c28369bc728ea1288941bf07eb7808d1176a0b0

  • SHA512

    88d8e7f76db6d0e6ef75ed322f05bb8c0211e65feae35d1265bcd391b97d8385dfe1a08b594dff482aa6bfe3f2a56426bef1d71a2e8131f2090c6e94c149361f

  • SSDEEP

    24576:88kPHxZNJT+gjsiR8kZUcAK9tjeBbvWYIQk:8pLdjs+8gAKrU7WYIz

Score
8/10
persistence

Malware Config

Targets

    • Target

      634497ad58cc0f208b2d6ca36c28369bc728ea1288941bf07eb7808d1176a0b0

    • Size

      774KB

    • MD5

      1ba6fcaa323192554b1a461597c6c2fe

    • SHA1

      7432baad8edfa44daad51d67d19c523a352a2842

    • SHA256

      634497ad58cc0f208b2d6ca36c28369bc728ea1288941bf07eb7808d1176a0b0

    • SHA512

      88d8e7f76db6d0e6ef75ed322f05bb8c0211e65feae35d1265bcd391b97d8385dfe1a08b594dff482aa6bfe3f2a56426bef1d71a2e8131f2090c6e94c149361f

    • SSDEEP

      24576:88kPHxZNJT+gjsiR8kZUcAK9tjeBbvWYIQk:8pLdjs+8gAKrU7WYIz

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Modifies Installed Components in the registry

      persistence

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks