Overview

overview

10

Static

static

3

c83c91e0b9...57.exe

windows7-x64

10

c83c91e0b9...57.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c83c91e0b97667f5f98ab426cec8801e4bac66f1210e10018209633ab1390e57

  • Size

    492KB

  • Sample

    231028-t4f5gacc8s

  • MD5

    d2f4b8ba426494cfd47d7a726d6d25e3

  • SHA1

    a79d1c40049571a6646f6b4c9f74c09eb7f76aa6

  • SHA256

    c83c91e0b97667f5f98ab426cec8801e4bac66f1210e10018209633ab1390e57

  • SHA512

    92daf50e03515cfe3643fcf82cbd7052aef63ce5c8bae3d70d90bd02b7d0c43ddaae3511183b492c355ad02a279c5c1b76cb2effafe531e7313bdaa96160c37c

  • SSDEEP

    3072:oHgVbcBoTRMGUYnJjEFp8Qp5O8kd6LkLh3VNr4d3Pc0n5f5Uydp:IgZ+nRpXkU2hlNrWj5fO4

Score
10/10
chinese_generic_botnetbotnetpersistence

Malware Config

Targets

    • Target

      c83c91e0b97667f5f98ab426cec8801e4bac66f1210e10018209633ab1390e57

    • Size

      492KB

    • MD5

      d2f4b8ba426494cfd47d7a726d6d25e3

    • SHA1

      a79d1c40049571a6646f6b4c9f74c09eb7f76aa6

    • SHA256

      c83c91e0b97667f5f98ab426cec8801e4bac66f1210e10018209633ab1390e57

    • SHA512

      92daf50e03515cfe3643fcf82cbd7052aef63ce5c8bae3d70d90bd02b7d0c43ddaae3511183b492c355ad02a279c5c1b76cb2effafe531e7313bdaa96160c37c

    • SSDEEP

      3072:oHgVbcBoTRMGUYnJjEFp8Qp5O8kd6LkLh3VNr4d3Pc0n5f5Uydp:IgZ+nRpXkU2hlNrWj5fO4

    Score
    10/10
    chinese_generic_botnetbotnetpersistence

    • Generic Chinese Botnet

      A botnet originating from China which is currently unnamed publicly.

      botnetchinese_generic_botnet

    • Chinese Botnet payload

      botnet

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks