Overview

overview

8

Static

static

1

R3.der

windows7-x64

8

R3.der

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    R3.der

  • Size

    1KB

  • Sample

    230315-m8v1vseh3y

  • MD5

    e829e65d7c4307d6fbc13c179e037a36

  • SHA1

    a053375bfe84e8b748782c7cee15827a6af5a405

  • SHA256

    67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd

  • SHA512

    96c5793b2b57d8df5891c94015720960e0da4c2cf8ce1fc5707a0b46e5db8ce3761fb5fdb430f619d1579f13e80fbdd973ef6a024129ed039aa193273158fcad

Score
8/10

Malware Config

Targets

    • Target

      R3.der

    • Size

      1KB

    • MD5

      e829e65d7c4307d6fbc13c179e037a36

    • SHA1

      a053375bfe84e8b748782c7cee15827a6af5a405

    • SHA256

      67add1166b020ae61b8f5fc96813c04c2aa589960796865572a3c7e737613dfd

    • SHA512

      96c5793b2b57d8df5891c94015720960e0da4c2cf8ce1fc5707a0b46e5db8ce3761fb5fdb430f619d1579f13e80fbdd973ef6a024129ed039aa193273158fcad

    Score
    8/10

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

1
T1130

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks