Overview

overview

10

Static

static

1

Axxom 0011.xlam

windows7-x64

10

Axxom 0011.xlam

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    Axxom 0011.xlam

  • Size

    680KB

  • Sample

    231007-jbvr2scb29

  • MD5

    cd5462b5fd310e95362a9a37ba227c49

  • SHA1

    566dd93a2362c987b753ec8326240abd7ab44058

  • SHA256

    186d9848000eee5393ff0a5ba028b48fc0e6b01997ca0cdf139b4a41e0360975

  • SHA512

    e296b5fdf943b077d73b4c0518be2a082c77e0d6c81cb865873ecbf3cb4e47c194805863cf5cbd9aa47152b92271b8e7523a093a976197cb990020a15a9f4b80

  • SSDEEP

    12288:+PP0xnoGqovOZPg9kSVEHguwtA8IyQAAyN8RdabGaeNOQft57vT0Bcy7xg:+EYoW1owxwFcLCAZL8pxg

Score
10/10

Malware Config

Extracted

Language
ps1
Deobfuscated
URLs
ps1.dropper

https://uploaddeimagens.com.br/images/004/616/609/original/rump_vbs.jpg?1695408937
exe.dropper

https://uploaddeimagens.com.br/images/004/616/609/original/rump_vbs.jpg?1695408937

Targets

    • Target

      Axxom 0011.xlam

    • Size

      680KB

    • MD5

      cd5462b5fd310e95362a9a37ba227c49

    • SHA1

      566dd93a2362c987b753ec8326240abd7ab44058

    • SHA256

      186d9848000eee5393ff0a5ba028b48fc0e6b01997ca0cdf139b4a41e0360975

    • SHA512

      e296b5fdf943b077d73b4c0518be2a082c77e0d6c81cb865873ecbf3cb4e47c194805863cf5cbd9aa47152b92271b8e7523a093a976197cb990020a15a9f4b80

    • SSDEEP

      12288:+PP0xnoGqovOZPg9kSVEHguwtA8IyQAAyN8RdabGaeNOQft57vT0Bcy7xg:+EYoW1owxwFcLCAZL8pxg

    Score
    10/10

    • Blocklisted process makes network request

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks