Overview

overview

8

Static

static

fcc60369e4...db.exe

windows7-x64

8

fcc60369e4...db.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fcc60369e4aa2dc1654e2b8e3473e1c68bfeb593f547c2e0533f3db91a9d04db

  • Size

    803KB

  • Sample

    221206-tje2nsce24

  • MD5

    e86e2e7020b0e203d8726354ef420e3c

  • SHA1

    821062816582ffce9ed85e8c14c032f6e3829008

  • SHA256

    fcc60369e4aa2dc1654e2b8e3473e1c68bfeb593f547c2e0533f3db91a9d04db

  • SHA512

    ee82994445650d534241476b7b1139bcf5f4f12fe3219effd1ccb850c05e38bab9562b3279b6b7ef7ea97eb74e712e5c114cfe815ec3dccab55b696a9447532f

  • SSDEEP

    24576:a1L5BUmg934RlFtrdC7WM2sGjo0pAjNkZ5bVS80r:74RlFtxCjC+8s

Score
8/10
evasionpersistence

Malware Config

Targets

    • Target

      fcc60369e4aa2dc1654e2b8e3473e1c68bfeb593f547c2e0533f3db91a9d04db

    • Size

      803KB

    • MD5

      e86e2e7020b0e203d8726354ef420e3c

    • SHA1

      821062816582ffce9ed85e8c14c032f6e3829008

    • SHA256

      fcc60369e4aa2dc1654e2b8e3473e1c68bfeb593f547c2e0533f3db91a9d04db

    • SHA512

      ee82994445650d534241476b7b1139bcf5f4f12fe3219effd1ccb850c05e38bab9562b3279b6b7ef7ea97eb74e712e5c114cfe815ec3dccab55b696a9447532f

    • SSDEEP

      24576:a1L5BUmg934RlFtrdC7WM2sGjo0pAjNkZ5bVS80r:74RlFtxCjC+8s

    Score
    8/10
    evasionpersistence

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

      evasion

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks