Overview

overview

7

Static

static

1

Wallpaper_...18.exe

windows7-x64

7

Wallpaper_...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    Wallpaper_Engine_v2.2.18.exe

  • Size

    142.7MB

  • Sample

    230417-vnxmysha2w

  • MD5

    d7a165f2fde3a56fee2443c13304acf7

  • SHA1

    0e18cb6003b092ce2d45fe8fe3b066a5de2f3607

  • SHA256

    d101d53f521a120c9fabed05da58ed68e7d361720572926d6ba9edb468c4a44d

  • SHA512

    8ff9d79aea4ee9689937aa07729a28bcebb8b4b712f934694357e03e8a113a5961f7c92eed8e17c164b480390f147e57e062ae1379b471bc73e19f8dc69d6cf7

  • SSDEEP

    3145728:QW7TORuzrB04d3yFsT9lbVq7poIG2too6:2sB7ms5lVqlG66

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      Wallpaper_Engine_v2.2.18.exe

    • Size

      142.7MB

    • MD5

      d7a165f2fde3a56fee2443c13304acf7

    • SHA1

      0e18cb6003b092ce2d45fe8fe3b066a5de2f3607

    • SHA256

      d101d53f521a120c9fabed05da58ed68e7d361720572926d6ba9edb468c4a44d

    • SHA512

      8ff9d79aea4ee9689937aa07729a28bcebb8b4b712f934694357e03e8a113a5961f7c92eed8e17c164b480390f147e57e062ae1379b471bc73e19f8dc69d6cf7

    • SSDEEP

      3145728:QW7TORuzrB04d3yFsT9lbVq7poIG2too6:2sB7ms5lVqlG66

    Score
    7/10
    discoverypersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks