Overview

overview

7

Static

static

1

login.html

windows10-1703-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    login

  • Size

    26KB

  • Sample

    230418-spvhwacc52

  • MD5

    ae3b4ae2d1262506920843c4ac173a33

  • SHA1

    839d154437dc351744c2b11923a0e8a2f5719c0f

  • SHA256

    896b2538af2bdd4f90bd67f3d5b90fac2f0a5bfe7d2270ecea840385b40c828a

  • SHA512

    04bc674bff194afe9ff3078c9d4a3519bec7d61f7010241b2b617443fef75607cfe622b56439b74d885394578eeabd4915c96fb0474c4ccb6b5c516e15669b0f

  • SSDEEP

    384:UZ0e3ujIp/n7M0IQqC9RZfxSAZn0fZ9effGfMfgy3syZj5XCqzGX3g:80GugIqjfxSAZnmZI3UWgYsyZ9T

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      login

    • Size

      26KB

    • MD5

      ae3b4ae2d1262506920843c4ac173a33

    • SHA1

      839d154437dc351744c2b11923a0e8a2f5719c0f

    • SHA256

      896b2538af2bdd4f90bd67f3d5b90fac2f0a5bfe7d2270ecea840385b40c828a

    • SHA512

      04bc674bff194afe9ff3078c9d4a3519bec7d61f7010241b2b617443fef75607cfe622b56439b74d885394578eeabd4915c96fb0474c4ccb6b5c516e15669b0f

    • SSDEEP

      384:UZ0e3ujIp/n7M0IQqC9RZfxSAZn0fZ9effGfMfgy3syZj5XCqzGX3g:80GugIqjfxSAZnmZI3UWgYsyZ9T

    Score
    7/10
    discoverypersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks