Overview

overview

8

Static

static

cf1dc801ae...34.exe

windows7-x64

1

cf1dc801ae...34.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cf1dc801ae837c49ed764ea0b583a762039e289fb56fbe43f18532a74b6dfd34

  • Size

    32KB

  • Sample

    221203-zn4tgshg4x

  • MD5

    1ef628413fefd037f07aaff41f94d72e

  • SHA1

    ac46289014e8eb1a8870c2ff84d65ada839111fd

  • SHA256

    cf1dc801ae837c49ed764ea0b583a762039e289fb56fbe43f18532a74b6dfd34

  • SHA512

    e13dc94e8f833890dd30b9730888031b699a9eb51ebbf13efc7c498cb7de48e6b9d9e122038d5367c73cd92ab5db9d3c9149c6c4e5bea913a7d0cb0cb54f9325

  • SSDEEP

    384:JR9J8pn12m/wdynnRM144+HJBC03tqvXJTDQ3Dl9BNAb:NJOn12mognRL4+HJBd3tqv5TDMjA

Score
8/10
evasionpersistence

Malware Config

Targets

    • Target

      cf1dc801ae837c49ed764ea0b583a762039e289fb56fbe43f18532a74b6dfd34

    • Size

      32KB

    • MD5

      1ef628413fefd037f07aaff41f94d72e

    • SHA1

      ac46289014e8eb1a8870c2ff84d65ada839111fd

    • SHA256

      cf1dc801ae837c49ed764ea0b583a762039e289fb56fbe43f18532a74b6dfd34

    • SHA512

      e13dc94e8f833890dd30b9730888031b699a9eb51ebbf13efc7c498cb7de48e6b9d9e122038d5367c73cd92ab5db9d3c9149c6c4e5bea913a7d0cb0cb54f9325

    • SSDEEP

      384:JR9J8pn12m/wdynnRM144+HJBC03tqvXJTDQ3Dl9BNAb:NJOn12mognRL4+HJBd3tqv5TDMjA

    Score
    8/10
    evasionpersistence

    • Executes dropped EXE

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

      evasion

    • Drops startup file

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks