Overview

overview

6

Static

static

1

fsafsaf.zip

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fsafsaf.cxr

  • Size

    5.3MB

  • Sample

    230415-23pn8ahf7v

  • MD5

    75589c401021c6f2b6e0b77ef5131de3

  • SHA1

    799f79fce8c9b1901e1e7229cb9e777e4596bece

  • SHA256

    0062ce70c295008c425a3d3a182f19dd44614ca43d739677c991c8051303d3bb

  • SHA512

    b212d062fc08b674b4effd448138cb79de9b6da0e57e6a2787386da84177ac21d3647acea42d4d016fff49a4e9248e8b5fef22e20cb285d9797f184821f48541

  • SSDEEP

    98304:z0r1S3R6lnfs31S4kr5yitEeXIebJWAQJiZcboIBGjMAtPLqOo:ik3f31/WzaatWAdc8ma7FLqOo

Score
6/10
persistence

Malware Config

Targets

    • Target

      fsafsaf.cxr

    • Size

      5.3MB

    • MD5

      75589c401021c6f2b6e0b77ef5131de3

    • SHA1

      799f79fce8c9b1901e1e7229cb9e777e4596bece

    • SHA256

      0062ce70c295008c425a3d3a182f19dd44614ca43d739677c991c8051303d3bb

    • SHA512

      b212d062fc08b674b4effd448138cb79de9b6da0e57e6a2787386da84177ac21d3647acea42d4d016fff49a4e9248e8b5fef22e20cb285d9797f184821f48541

    • SSDEEP

      98304:z0r1S3R6lnfs31S4kr5yitEeXIebJWAQJiZcboIBGjMAtPLqOo:ik3f31/WzaatWAdc8ma7FLqOo

    Score
    6/10
    persistence

    • Adds Run key to start application

      persistence

    • Drops Chrome extension

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks