Overview

overview

8

Static

static

5

e656839bd8...80.exe

windows7-x64

8

e656839bd8...80.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e656839bd8b4967de579f42db5f4c54361e83f0e49939ff95e63b38236629780

  • Size

    737KB

  • Sample

    221204-df63zsba63

  • MD5

    29bb59da4c59e1f04c5833065f89c28d

  • SHA1

    811f3b504a073dc0ea4060287838463dd325d501

  • SHA256

    e656839bd8b4967de579f42db5f4c54361e83f0e49939ff95e63b38236629780

  • SHA512

    027bf3d8224ee522b4a2b5f57956f1d7a99ca53168756fdf5cc5c7bed41223882734a0682117c44b58a8f570918d98bd4954d7bad29ba084b3089ddf2d66fce2

  • SSDEEP

    12288:ChkDgouVA2nxKkorvdRgQriDwOIxmxiZnYQE7PJcE4aSnJDuu7:iRmJkcoQricOIQxiZY1iaSJn

Score
8/10
persistence

Malware Config

Targets

    • Target

      e656839bd8b4967de579f42db5f4c54361e83f0e49939ff95e63b38236629780

    • Size

      737KB

    • MD5

      29bb59da4c59e1f04c5833065f89c28d

    • SHA1

      811f3b504a073dc0ea4060287838463dd325d501

    • SHA256

      e656839bd8b4967de579f42db5f4c54361e83f0e49939ff95e63b38236629780

    • SHA512

      027bf3d8224ee522b4a2b5f57956f1d7a99ca53168756fdf5cc5c7bed41223882734a0682117c44b58a8f570918d98bd4954d7bad29ba084b3089ddf2d66fce2

    • SSDEEP

      12288:ChkDgouVA2nxKkorvdRgQriDwOIxmxiZnYQE7PJcE4aSnJDuu7:iRmJkcoQricOIQxiZY1iaSJn

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks