Overview

overview

8

Static

static

1

Ext2Fsd-0.69.exe

windows7-x64

8

Ext2Fsd-0.69.exe

windows10-2004-x64

4

Sharing

Copy URL Twitter E-mail

General

  • Target

    Ext2Fsd-0.69.exe

  • Size

    2.6MB

  • Sample

    230527-m77chabf58

  • MD5

    1dcb5f180c0b93cd3de4d9e01431f90c

  • SHA1

    5adaf3d830a904dc60adb1a6594f68cc0197f791

  • SHA256

    04461a580e5d259ef7aca9e0c0d715d3baf342ad940354b6545d7ff3ed85af1c

  • SHA512

    9e8f7c26ce1bf933016baed0926742a092be5f3ea11cd9747b86ca5653686247c9b6383dd6ffaa491d692fed363c471dff30ad62f3ca40027bb6cc100e4dcf29

  • SSDEEP

    49152:mvcHQqmSxz9e6xz+1ZUOigNIsRJ2WCzycnIPOGh0fosqdtogV274zyZfei:CcwqmIzxIZUOigCEezycIPO+Qok7rei

Score
8/10
discoverypersistence

Malware Config

Targets

    • Target

      Ext2Fsd-0.69.exe

    • Size

      2.6MB

    • MD5

      1dcb5f180c0b93cd3de4d9e01431f90c

    • SHA1

      5adaf3d830a904dc60adb1a6594f68cc0197f791

    • SHA256

      04461a580e5d259ef7aca9e0c0d715d3baf342ad940354b6545d7ff3ed85af1c

    • SHA512

      9e8f7c26ce1bf933016baed0926742a092be5f3ea11cd9747b86ca5653686247c9b6383dd6ffaa491d692fed363c471dff30ad62f3ca40027bb6cc100e4dcf29

    • SSDEEP

      49152:mvcHQqmSxz9e6xz+1ZUOigNIsRJ2WCzycnIPOGh0fosqdtogV274zyZfei:CcwqmIzxIZUOigCEezycIPO+Qok7rei

    Score
    8/10
    discoverypersistence

    • Drops file in Drivers directory

    • Sets service image path in registry

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks