Overview

overview

8

Static

static

1

The_Pain_i...ys.zip

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    The_Pain_in_3_Days.zip

  • Size

    111.0MB

  • Sample

    230508-s7hl2adb7t

  • MD5

    8d5d9caa693c8566ff12e1551b3fac5d

  • SHA1

    adcc5ec1cdb330950ff62bbc0b54b87bc7f88e52

  • SHA256

    3a951f6f90dbd0bf5ee469f081d7dec99aec8099b9628b3bd14e3a2cec46b287

  • SHA512

    387c64769ce78fffc0bba2faf518bf57a3577751e18f89e9d0cf6f4695b6480bd4907534a0557a85e913a9fda102685c56bd797884aefc8bfe3bdd911d3deb20

  • SSDEEP

    3145728:K6wYap67pxMgQEVcsmAq8fOTg/6wO5Im6RsMhW3zJTDw:K6wG9xMUctAq3TgSwoImchezJTDw

Score
8/10
discoverypersistence

Malware Config

Targets

    • Target

      The_Pain_in_3_Days.zip

    • Size

      111.0MB

    • MD5

      8d5d9caa693c8566ff12e1551b3fac5d

    • SHA1

      adcc5ec1cdb330950ff62bbc0b54b87bc7f88e52

    • SHA256

      3a951f6f90dbd0bf5ee469f081d7dec99aec8099b9628b3bd14e3a2cec46b287

    • SHA512

      387c64769ce78fffc0bba2faf518bf57a3577751e18f89e9d0cf6f4695b6480bd4907534a0557a85e913a9fda102685c56bd797884aefc8bfe3bdd911d3deb20

    • SSDEEP

      3145728:K6wYap67pxMgQEVcsmAq8fOTg/6wO5Im6RsMhW3zJTDw:K6wG9xMUctAq3TgSwoImchezJTDw

    Score
    8/10
    discoverypersistence

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • Registers COM server for autorun

      persistence

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks