Overview

overview

8

Static

static

1

windows.10...up.exe

windows7-x64

8

windows.10...up.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    windows.10.codec.pack.v2.2.0.setup.exe

  • Size

    45.5MB

  • Sample

    230403-1jc1msfh5v

  • MD5

    908ea32c938f24669728a7c026a6552b

  • SHA1

    2695b6cd468636b09c1495a86a69ce4f56203a0c

  • SHA256

    435506cbe66bebdfdf9a2a94b1e8f483fdf108ab308129a6eb8dfd56a8bc77bc

  • SHA512

    342281df3e8823dbca8231335c17d76fbc4d0ba35a97c2d777d11c9ca33b86e689ef54c86aebbbec50a6f499b7232c4d56406f0471cce666a74203bfe95e710e

  • SSDEEP

    786432:Zbe52lsoZacQr5el64WTdDUCpGnSlyXMs8AdIqCmF3kdPEcOKbBhscBpw4yTie6d:ZbpHZac09DtpI7XMvmIqoPppw4yees

Score
8/10
discoverypersistence

Malware Config

Targets

    • Target

      windows.10.codec.pack.v2.2.0.setup.exe

    • Size

      45.5MB

    • MD5

      908ea32c938f24669728a7c026a6552b

    • SHA1

      2695b6cd468636b09c1495a86a69ce4f56203a0c

    • SHA256

      435506cbe66bebdfdf9a2a94b1e8f483fdf108ab308129a6eb8dfd56a8bc77bc

    • SHA512

      342281df3e8823dbca8231335c17d76fbc4d0ba35a97c2d777d11c9ca33b86e689ef54c86aebbbec50a6f499b7232c4d56406f0471cce666a74203bfe95e710e

    • SSDEEP

      786432:Zbe52lsoZacQr5el64WTdDUCpGnSlyXMs8AdIqCmF3kdPEcOKbBhscBpw4yTie6d:ZbpHZac09DtpI7XMvmIqoPppw4yees

    Score
    8/10
    discoverypersistence

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Registers COM server for autorun

      persistence

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks