8723ed5d634e300b2c76003c6d403f23c9b098a45f168edb26bb8c2b8e039d8f

Analysis

max time kernel
28s
max time network
31s
platform
windows7_x64
resource
win7-20230220-en
resource tags

arch:x64arch:x86image:win7-20230220-enlocale:en-usos:windows7-x64system
submitted
25/05/2023, 23:57

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

dssdsdsd.exe
Size

233KB
MD5

287363bce76b10fb14839a4336721f41
SHA1

d85d147bd06d6bbbb967a5f24ec36cfc5525e188
SHA256

8723ed5d634e300b2c76003c6d403f23c9b098a45f168edb26bb8c2b8e039d8f
SHA512

6ac7daa0e021bf859511f3ff76b82dfbcb85ab7d9f99963f851cc30eba3437fa0f77e83d716aba1ce297ab3a92e377f2c5f232059dec25b8d15034a2391f7282
SSDEEP

6144:jrjFcvV/BQhQZlOf+QuE+oDAOM0g5nALW:XjFcvV/dOGloDe0c8W

Score

6^/10

persistence

Malware Config

Signatures

Adds Run key to start application 2 TTPs 1 IoCs

persistence

Registry Run Keys / Startup Folder

T1060

Modify Registry

T1112

description	ioc	Process
Set value (str)	\REGISTRY\USER\S-1-5-21-2961826002-3968192592-354541192-1000\Software\Microsoft\Windows\CurrentVersion\Run\My Program = "C:\\Users\\Admin\\AppData\\Local\\Temp\\dssdsdsd.exe"	dssdsdsd.exe

C:\Users\Admin\AppData\Local\Temp\dssdsdsd.exe
"C:\Users\Admin\AppData\Local\Temp\dssdsdsd.exe"
1⤵
- Adds Run key to start application
PID:848

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

T1060

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads