Overview

overview

7

Static

static

1

d6832398e3...a8.exe

windows7-x64

7

d6832398e3...a8.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    d6832398e3bc9156a660745f427dc1c2392ce4e9a872e04f41f62d0c6bae07a8.exe.zip

  • Size

    2.6MB

  • Sample

    231031-rgel1she9s

  • MD5

    b2948412150f48bb407e8cba60469469

  • SHA1

    42f79db77553ae2b620f45d76bff9b1799df7065

  • SHA256

    15d729fe22a6264ae1e8e20be28e3bb8747e5c0e8afa17613c12e71ee736fd4c

  • SHA512

    9949c211fd9075dc8a1a0244b15c315397528dc7fc77c1f8bb68ae95e41c58f2a0caff0438729f628755aef79cc4beab30cd334fd1822e03cea1e4ada637aabe

  • SSDEEP

    49152:0a1uVepDY7tNf6bPsQeM77e7yBdtCgMIUc1Ic8nT12rW30DA2uB1e/JTAx94HWJR:BuwpM7qP7e7odTMIfmLEs281eAWHq

Score
7/10
persistence

Malware Config

Targets

    • Target

      d6832398e3bc9156a660745f427dc1c2392ce4e9a872e04f41f62d0c6bae07a8.exe

    • Size

      2.6MB

    • MD5

      6402438591b548121f54b0706a2c6423

    • SHA1

      e052789ebad7dc8d6f8505a9295b0576babd125e

    • SHA256

      d6832398e3bc9156a660745f427dc1c2392ce4e9a872e04f41f62d0c6bae07a8

    • SHA512

      c615e6337a9507bfaaff14e23043e206351d48bf7ba1d0c244c4bc8a08f411b4aa27f9a9074a87b320007b3cfca448306752fd343392bdde83b851b0e7daadef

    • SSDEEP

      49152:OW6IfKsucUSdXRc8jfi8sH9LyrgSnem02SIi7oOBX4twfDI4OzLbT3:RxucUkGwoBrSn9hFi73BV7xO33

    Score
    7/10
    persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks