Overview

overview

7

Static

static

3

main_code.exe

windows10-1703-x64

7

main_code.exe

windows7-x64

7

main_code.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    main_code.exe

  • Size

    5.0MB

  • Sample

    230205-lbqt7sha47

  • MD5

    e959d4eab2bc3a03e16a2679afbb6fd1

  • SHA1

    68128c88dbbcec7626607ee280dbca7b3259ece0

  • SHA256

    cfcb6343919323e8bfca03a429aacf5a3a6e970282b045c029dd1880a98e8155

  • SHA512

    78cdf2039e928bf6178ad922988978f2c7b3ffa1e44c12d5c571236a8f4d31f497ac2179ffc50c7b97a1451c25fdce5d7211fde19ed04b343e85a0c421bca99c

  • SSDEEP

    98304:v/8NBwpzoLLJ3TbwaVvrZE0I8LKI8F/Vtt1mIi3pRN8D8cXu6M1Tbb+5x1NL/p0:v/aw9onJ5hrZEce9tGPqK6wTbaLTLh

Score
7/10
persistencepyinstaller

Malware Config

Targets

    • Target

      main_code.exe

    • Size

      5.0MB

    • MD5

      e959d4eab2bc3a03e16a2679afbb6fd1

    • SHA1

      68128c88dbbcec7626607ee280dbca7b3259ece0

    • SHA256

      cfcb6343919323e8bfca03a429aacf5a3a6e970282b045c029dd1880a98e8155

    • SHA512

      78cdf2039e928bf6178ad922988978f2c7b3ffa1e44c12d5c571236a8f4d31f497ac2179ffc50c7b97a1451c25fdce5d7211fde19ed04b343e85a0c421bca99c

    • SSDEEP

      98304:v/8NBwpzoLLJ3TbwaVvrZE0I8LKI8F/Vtt1mIi3pRN8D8cXu6M1Tbb+5x1NL/p0:v/aw9onJ5hrZEce9tGPqK6wTbaLTLh

    Score
    7/10
    persistence

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks