Overview

overview

8

Static

static

3

593cf32aef...e7.exe

windows7-x64

8

593cf32aef...e7.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    593cf32aef5124ffeb599f3b95205ee7

  • Size

    39KB

  • Sample

    231226-g4a71aecfr

  • MD5

    593cf32aef5124ffeb599f3b95205ee7

  • SHA1

    e50ecc3460017907ad8c3a341e11eab084c915e2

  • SHA256

    bb1587472ce3c277b88840590e755223077f9ef359a72869b354ef2179664719

  • SHA512

    7f8f247098a66d0164cfb0daae3374193aa362d832a1160a7487141720629bfee9e7632f0c56dd6cd69940202a191cfe67fdbbad198ef9ebed1c839ee04eea2d

  • SSDEEP

    768:MbodXomvtes3YwBvZgV/RYqsU77WVHIWicR41HYcYdD:MsFVtwwBvWhCqswKkJ14cYJ

Score
8/10
discoverypersistence

Malware Config

Targets

    • Target

      593cf32aef5124ffeb599f3b95205ee7

    • Size

      39KB

    • MD5

      593cf32aef5124ffeb599f3b95205ee7

    • SHA1

      e50ecc3460017907ad8c3a341e11eab084c915e2

    • SHA256

      bb1587472ce3c277b88840590e755223077f9ef359a72869b354ef2179664719

    • SHA512

      7f8f247098a66d0164cfb0daae3374193aa362d832a1160a7487141720629bfee9e7632f0c56dd6cd69940202a191cfe67fdbbad198ef9ebed1c839ee04eea2d

    • SSDEEP

      768:MbodXomvtes3YwBvZgV/RYqsU77WVHIWicR41HYcYdD:MsFVtwwBvWhCqswKkJ14cYJ

    Score
    8/10
    discoverypersistence

    • Contacts a large (519) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Adds Run key to start application

      persistence

    • Modifies WinLogon

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks