Overview

overview

7

Static

static

3

090ed66484...b8.exe

windows7-x64

7

090ed66484...b8.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    090ed6648475a0f4335f3aacbf1ce1b8

  • Size

    323KB

  • Sample

    231225-gfxq4ahbhq

  • MD5

    090ed6648475a0f4335f3aacbf1ce1b8

  • SHA1

    50164868651b0f1a6a81ecd7ac7a807a7e5cabb0

  • SHA256

    3e5817711e5d85d39fa9f370e943aac59ed4b04a380abbf9f77d323f23283c5b

  • SHA512

    a817810ea389d6ab45aba84097e00b5903ed47cc8bca14217605eec42e14c2b27c66ebbbaa090dc5c99c4e88e53358c5570784d5a15b50d9ea16b33b08ced1b5

  • SSDEEP

    6144:0jcoAso3+AW4paOCUH3RniJfO8PF5ZwK2AL2vZ62iONU4kn:0VAso+54pxHBiIotifv42JNxe

Score
7/10
persistence

Malware Config

Targets

    • Target

      090ed6648475a0f4335f3aacbf1ce1b8

    • Size

      323KB

    • MD5

      090ed6648475a0f4335f3aacbf1ce1b8

    • SHA1

      50164868651b0f1a6a81ecd7ac7a807a7e5cabb0

    • SHA256

      3e5817711e5d85d39fa9f370e943aac59ed4b04a380abbf9f77d323f23283c5b

    • SHA512

      a817810ea389d6ab45aba84097e00b5903ed47cc8bca14217605eec42e14c2b27c66ebbbaa090dc5c99c4e88e53358c5570784d5a15b50d9ea16b33b08ced1b5

    • SSDEEP

      6144:0jcoAso3+AW4paOCUH3RniJfO8PF5ZwK2AL2vZ62iONU4kn:0VAso+54pxHBiIotifv42JNxe

    Score
    7/10
    persistence

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks