Overview

overview

7

Static

static

1

IMG0540256...PG.scr

windows7-x64

6

IMG0540256...PG.scr

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    0b6593838183062d04ddf6df04abc999

  • Size

    195KB

  • Sample

    231224-wy7rcafcfj

  • MD5

    0b6593838183062d04ddf6df04abc999

  • SHA1

    bf479f3b5a15b38647ac63fee28da70f50eafa16

  • SHA256

    444d22059726d64e2abf82fd42a3bb5918bebc87a1884c4d0099b827e717a509

  • SHA512

    c2baa875ce50feb1c6313dbff971d39b09cbc1dfabf7be469d1880ee324376a600cf76914a7f6e27bb8af9e86434f5b5f7e8091de55c76b13309e5fad19a2694

  • SSDEEP

    6144:G5HXprg39nBnKNz/L4kVV9+zEzEVpYDD5zNSTKlLe:GxXprK9BK1MkVV9+wvN0TuLe

Score
7/10
persistence

Malware Config

Targets

    • Target

      IMG054025602016-JPG.scr

    • Size

      238KB

    • MD5

      af0deacaa3423b84cc1108009782f4d8

    • SHA1

      5c98c215e335d7f1073350883366e2080f9d9286

    • SHA256

      16ba6496c0cb6264ba6d32990546f41950cfb57951ab8303f62a841d69daf9cf

    • SHA512

      31f65129d5ee1c30f62ca69fb01a582f8aaeae5bf85069844188977a397613db60e717f82bf9c249f1300f9fd01b7586f716d3fc2559483199858e314d7d1292

    • SSDEEP

      6144:aJXYl0G7ZfLABcBkM5czMckVV9OzEzEVpaAF4I1ep:hrY+yjkVV9OwV64I1M

    Score
    7/10
    persistence

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks