Overview

overview

8

Static

static

c318220565...c6.exe

windows7-x64

8

c318220565...c6.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c3182205652a73f94358f502db4bb462a60736cd648931937e1eac4c8c4ba9c6

  • Size

    299KB

  • Sample

    221204-wf7nmacb73

  • MD5

    897a9dfc811974740ddb8cf00bca49bd

  • SHA1

    7ce5525d4ff2b4d5b3f494d6a463f27d46e9cbbd

  • SHA256

    c3182205652a73f94358f502db4bb462a60736cd648931937e1eac4c8c4ba9c6

  • SHA512

    4047a02bd79de9d7e3c481a48917165b37993a4246db97c94e0b227fba6ce2e2eeaeaece248602b3dfb2ffa7cfe0944bb1de04018a94661dcee14d7fa397d4f9

  • SSDEEP

    6144:wfHKxMfk26/Llb+iMo9K9rYfMjlxC3qDASol93/yEdzuwFHRJ:wvtn6jlPK9rYfMjzC3qQlV6+

Score
8/10
persistence

Malware Config

Targets

    • Target

      c3182205652a73f94358f502db4bb462a60736cd648931937e1eac4c8c4ba9c6

    • Size

      299KB

    • MD5

      897a9dfc811974740ddb8cf00bca49bd

    • SHA1

      7ce5525d4ff2b4d5b3f494d6a463f27d46e9cbbd

    • SHA256

      c3182205652a73f94358f502db4bb462a60736cd648931937e1eac4c8c4ba9c6

    • SHA512

      4047a02bd79de9d7e3c481a48917165b37993a4246db97c94e0b227fba6ce2e2eeaeaece248602b3dfb2ffa7cfe0944bb1de04018a94661dcee14d7fa397d4f9

    • SSDEEP

      6144:wfHKxMfk26/Llb+iMo9K9rYfMjlxC3qDASol93/yEdzuwFHRJ:wvtn6jlPK9rYfMjzC3qQlV6+

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Deletes itself

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Remote System Discovery

1
T1018

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks