Overview

overview

7

Static

static

1

ePass2003-...17.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ePass2003-Setup 1 17.exe

  • Size

    1.5MB

  • Sample

    230315-m8ad6aeh3w

  • MD5

    38770330cc7f7543549bda27d909f760

  • SHA1

    ce92a87cd6fa70d19c73657a2634a4f30d43122e

  • SHA256

    98b5c54a3574a4caf1553a0ba71af4accec5fd2957bc1e858b6302fb2ebdea6a

  • SHA512

    7bd49aa380f159c5d955ee9b124731fa4a8f802ee022fa4faa4ba79ccdd445ce94d1a3a168affe65e7d4930a7c8f381c0f24a55f09bb981cc8000ff339c43595

  • SSDEEP

    24576:S3IylDHal5E1F2P7WFn+DK82WaMP8EiTCQlEayvpw9MhI7y8oiRv9ve/sD1C:SzpazE1xEDKdMuuNayvpEMhIFoiLm/Sg

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      ePass2003-Setup 1 17.exe

    • Size

      1.5MB

    • MD5

      38770330cc7f7543549bda27d909f760

    • SHA1

      ce92a87cd6fa70d19c73657a2634a4f30d43122e

    • SHA256

      98b5c54a3574a4caf1553a0ba71af4accec5fd2957bc1e858b6302fb2ebdea6a

    • SHA512

      7bd49aa380f159c5d955ee9b124731fa4a8f802ee022fa4faa4ba79ccdd445ce94d1a3a168affe65e7d4930a7c8f381c0f24a55f09bb981cc8000ff339c43595

    • SSDEEP

      24576:S3IylDHal5E1F2P7WFn+DK82WaMP8EiTCQlEayvpw9MhI7y8oiRv9ve/sD1C:SzpazE1xEDKdMuuNayvpEMhIFoiLm/Sg

    Score
    7/10
    discoverypersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Registers COM server for autorun

      persistence

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks