Overview

overview

7

Static

static

5

SUPPLIES LIST.....exe

windows7-x64

7

SUPPLIES LIST.....exe

windows10-2004-x64

7

Resubmissions

01-03-2023 23:22

230301-3c23asab6w 7

01-03-2023 23:20

230301-3bdnbaaf36 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    hgfetb.R11

  • Size

    813KB

  • Sample

    230301-3c23asab6w

  • MD5

    26323ec2ddb6ed0211dcfcac34409697

  • SHA1

    3fab9d3b6782d12e1ac723e83095918d934f90b8

  • SHA256

    8fe2456322a912436f60adb6ca18f068c86a76004849fcaf03cb160158e50031

  • SHA512

    fbf193195fa0bf7ffe7e4b3595e0e8d3cf6d1f6b9664a75c6dc666f3c2e813cdca0dae31879ab17ea27712fbd255c33536b002710f3539e241484c68c32f7832

  • SSDEEP

    24576:jr/ByB7CcK7iOeepXey9kwf6+o0gWedw4GwFTX:3BydYLp9l69VWeCgX

Score
7/10
persistence

Malware Config

Targets

    • Target

      SUPPLIES LIST.....exe

    • Size

      1.1MB

    • MD5

      e98902e8b25c5fd9b076085b4ec07425

    • SHA1

      da75f7df5c4dd88fa452857b27ad7608a1d960a7

    • SHA256

      fc9bf2effffbbd12c39aa6da2c6e73f44fac91081a5db95b085dd0e1c8fe1a88

    • SHA512

      076f73761ad22f655b29cde60f629e610aae4463f03415c1b9adbb6f8cb88c1e59ab76f5da048d92beb345e3536bb43a658e29db22a76b1a61ced0107e331ce2

    • SSDEEP

      24576:0RmJkcoQricOIQxiZY1iaDCksbOsMez/Y/Lmog1INgfM/:RJZoQrbTFZY1iaDYfAos

    Score
    7/10
    persistence

    • Drops startup file

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1
T1053

Persistence

Registry Run Keys / Startup Folder

1
T1060

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks