bc74abf48ce573c8bcc886611461ae06113cc4b585c1f084dd6f6117b6142b3b | Triage

Submit
Reports

Overview

overview

8

Static

static

1

sample.html

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

sample
Size

14KB
Sample

230627-hgr3nsec2v
MD5

3c4cb62870d702b62934fa934a0b1021
SHA1

f7419cd7169b210bd8f42fa97ad223c672d41402
SHA256

bc74abf48ce573c8bcc886611461ae06113cc4b585c1f084dd6f6117b6142b3b
SHA512

858b6e649b1328a5e05ca8dc668d0f9ec36837a2d96e8f2102936f1c985eb6f20502f682720dab847e68abd5d1433ad05c71a0f3707c128e33509047ce777e1f
SSDEEP

384:Oh8PXjyGzz+CbyRozz+CbvpmpgKpT/mrzmUVVNUrBnUlamUHL1UZBNRKu1zz+sbP:LyGzz+oyRozz+ovpmp3pT/gzmmVNGBn0

Score

8^/10

discovery evasion persistence

Static task

static1

Behavioral task

behavioral1

Sample

sample.html

Resource

win10v2004-20230621-en

discovery evasion persistence

windows10-2004-x64

20 signatures

1800 seconds

Malware Config

Targets

- Target
  
  sample
- Size
  
  14KB
- MD5
  
  3c4cb62870d702b62934fa934a0b1021
- SHA1
  
  f7419cd7169b210bd8f42fa97ad223c672d41402
- SHA256
  
  bc74abf48ce573c8bcc886611461ae06113cc4b585c1f084dd6f6117b6142b3b
- SHA512
  
  858b6e649b1328a5e05ca8dc668d0f9ec36837a2d96e8f2102936f1c985eb6f20502f682720dab847e68abd5d1433ad05c71a0f3707c128e33509047ce777e1f
- SSDEEP
  
  384:Oh8PXjyGzz+CbyRozz+CbvpmpgKpT/mrzmUVVNUrBnUlamUHL1UZBNRKu1zz+sbP:LyGzz+oyRozz+ovpmp3pT/gzmmVNGBn0
Score

8^/10

discovery evasion persistence
- Disables Task Manager via registry modification
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Web Service

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence

© 2018-2025

Terms | Privacy