Overview

overview

10

Static

static

3

abeb08a6b4...13.exe

windows7-x64

10

abeb08a6b4...13.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    abeb08a6b40d1f97366da3855a75f539f7feacfa50ddb6bdebf3ae9225a86d13

  • Size

    2.1MB

  • Sample

    231210-thttfafefl

  • MD5

    df7bf6a71d700986afbbf0c74783f4bb

  • SHA1

    b5273e244b4f5c1a6b5a4ce84b4c98aaec51f730

  • SHA256

    abeb08a6b40d1f97366da3855a75f539f7feacfa50ddb6bdebf3ae9225a86d13

  • SHA512

    787a8f39f78ced9e867edd639925a5537c23458dae0ce047c2be19379e142cc7678f3fc90c7335bc0423a39fec071914502dc572c5dfccfdb999377936dd5fd2

  • SSDEEP

    24576:57DlIWGz4VbS6rSTRq32hnMOa7mdsxI5DqVBGteW:5A4VBSTcGCO8mKy5xQW

Score
10/10
chinese_generic_botnetbotnetpersistence

Malware Config

Targets

    • Target

      abeb08a6b40d1f97366da3855a75f539f7feacfa50ddb6bdebf3ae9225a86d13

    • Size

      2.1MB

    • MD5

      df7bf6a71d700986afbbf0c74783f4bb

    • SHA1

      b5273e244b4f5c1a6b5a4ce84b4c98aaec51f730

    • SHA256

      abeb08a6b40d1f97366da3855a75f539f7feacfa50ddb6bdebf3ae9225a86d13

    • SHA512

      787a8f39f78ced9e867edd639925a5537c23458dae0ce047c2be19379e142cc7678f3fc90c7335bc0423a39fec071914502dc572c5dfccfdb999377936dd5fd2

    • SSDEEP

      24576:57DlIWGz4VbS6rSTRq32hnMOa7mdsxI5DqVBGteW:5A4VBSTcGCO8mKy5xQW

    Score
    10/10
    chinese_generic_botnetbotnetpersistence

    • Generic Chinese Botnet

      A botnet originating from China which is currently unnamed publicly.

      botnetchinese_generic_botnet

    • Chinese Botnet payload

      botnet

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks