Overview

overview

7

Static

static

1

ScreenRec_...ll.exe

windows7-x64

7

ScreenRec_...ll.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    ScreenRec_webinstall_all.exe

  • Size

    430KB

  • Sample

    230309-xt7ffshg76

  • MD5

    bf776a87851684618960380cbe2432a7

  • SHA1

    e9d91e78f658523f7e5da701cc30ec62f649510f

  • SHA256

    3fe36d00445253bf669d03f37b9e57b936ca837110ca0156ce7190616327f1f2

  • SHA512

    f7d8d136bedde342cbe2af844590c6bca5509fbd3a4176e4bc59867d6e62f66e68fc08462b35500715b044ce86c99ff59d3a981792e0d8254a1f7f40cb5fb475

  • SSDEEP

    6144:SFdKf6NxbxAcLs0ev9d3mTVjBpKUru9ouk5weQcls0ej9d3mTVjRpKUruqG4:CychevriBXru97qz0jriRXruqG4

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      ScreenRec_webinstall_all.exe

    • Size

      430KB

    • MD5

      bf776a87851684618960380cbe2432a7

    • SHA1

      e9d91e78f658523f7e5da701cc30ec62f649510f

    • SHA256

      3fe36d00445253bf669d03f37b9e57b936ca837110ca0156ce7190616327f1f2

    • SHA512

      f7d8d136bedde342cbe2af844590c6bca5509fbd3a4176e4bc59867d6e62f66e68fc08462b35500715b044ce86c99ff59d3a981792e0d8254a1f7f40cb5fb475

    • SSDEEP

      6144:SFdKf6NxbxAcLs0ev9d3mTVjBpKUru9ouk5weQcls0ej9d3mTVjRpKUruqG4:CychevriBXru97qz0jriRXruqG4

    Score
    7/10
    discoverypersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks