Overview

overview

10

Static

static

cd3a1932df...d3.exe

windows7-x64

8

cd3a1932df...d3.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    cd3a1932dfc6649c60f0cb8d1bc66176a809c9bc7e6705454b918f1c946774d3

  • Size

    361KB

  • Sample

    221205-yv7y2sca43

  • MD5

    ef7a1e5a979f16d72f3dd749bdb4697f

  • SHA1

    f1a34b0ae2655a3b61f7c15ea3e26cb4cfb15aa5

  • SHA256

    cd3a1932dfc6649c60f0cb8d1bc66176a809c9bc7e6705454b918f1c946774d3

  • SHA512

    23a92e4d5f8e595eb02ab169d01368f697649318bec86ce95949bdb829fc015dd4fc0151e8b3b74d90d4e3245a34cc0cb162f9f07b87fba4c913c2261e0bfe1b

  • SSDEEP

    6144:fflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:fflfAsiVGjSGecvX

Score
10/10

Malware Config

Targets

    • Target

      cd3a1932dfc6649c60f0cb8d1bc66176a809c9bc7e6705454b918f1c946774d3

    • Size

      361KB

    • MD5

      ef7a1e5a979f16d72f3dd749bdb4697f

    • SHA1

      f1a34b0ae2655a3b61f7c15ea3e26cb4cfb15aa5

    • SHA256

      cd3a1932dfc6649c60f0cb8d1bc66176a809c9bc7e6705454b918f1c946774d3

    • SHA512

      23a92e4d5f8e595eb02ab169d01368f697649318bec86ce95949bdb829fc015dd4fc0151e8b3b74d90d4e3245a34cc0cb162f9f07b87fba4c913c2261e0bfe1b

    • SSDEEP

      6144:fflfAsiL4lIJjiJcbI03GBc3ucY5DCSjX:fflfAsiVGjSGecvX

    Score
    10/10

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks