80c5f0c67499f9bd1acce70b6f156c99a41b54874960bfb8c4b8c150d11a05a4 | Triage

Submit
Reports

Overview

overview

6

Static

static

1

Screenshot...PM.png

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

General

Target

Screenshot 2023-05-31 1.39.51 PM.png
Size

584KB
Sample

230601-svbb7afa47
MD5

ccd209aa3a317b87ff64d357e0efaea5
SHA1

32bcdba14b92cb64848c0125998ba34b35c6b525
SHA256

80c5f0c67499f9bd1acce70b6f156c99a41b54874960bfb8c4b8c150d11a05a4
SHA512

8fdf00deb70e91905bd8fc6dd8a5ef421be009798f5570e88e1e3dd0fa53407c4d1eeaf9fccb4c7fa67f32f677f408dc4b5d21fa67f26b966cb39bd275e9f6c1
SSDEEP

12288:U1Jnwe6cNrIAZ+GT8ReFtxSzxHrXWpH8cQ36t5ENOpEEEhTLov4:1ejRInReFt2xHrXqcxKtoOR4TLj

Score

6^/10

persistence

Static task

static1

Behavioral task

behavioral1

Sample

Screenshot 2023-05-31 1.39.51 PM.png

Resource

win10v2004-20230220-en

windows10-2004-x64

13 signatures

1800 seconds

Malware Config

Targets

- Target
  
  Screenshot 2023-05-31 1.39.51 PM.png
- Size
  
  584KB
- MD5
  
  ccd209aa3a317b87ff64d357e0efaea5
- SHA1
  
  32bcdba14b92cb64848c0125998ba34b35c6b525
- SHA256
  
  80c5f0c67499f9bd1acce70b6f156c99a41b54874960bfb8c4b8c150d11a05a4
- SHA512
  
  8fdf00deb70e91905bd8fc6dd8a5ef421be009798f5570e88e1e3dd0fa53407c4d1eeaf9fccb4c7fa67f32f677f408dc4b5d21fa67f26b966cb39bd275e9f6c1
- SSDEEP
  
  12288:U1Jnwe6cNrIAZ+GT8ReFtxSzxHrXWpH8cQ36t5ENOpEEEhTLov4:1ejRInReFt2xHrXqcxKtoOR4TLj
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy