Overview

overview

7

Static

static

1

af48efac2b...fc.exe

windows7-x64

7

af48efac2b...fc.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    af48efac2b7d97cc0b70559a0a2be8cfeae961306ed16f0c91706a3bef6d61fc.exe.zip

  • Size

    12.4MB

  • Sample

    231231-ca9q9abgd8

  • MD5

    274e8d8d22c4c71541f4ee0f9dfcc0af

  • SHA1

    6f3303c8f8411ac86c86a449d0bd68e45a67bd7d

  • SHA256

    c259d0cf58752c1498db7f34035ce0da98879d369d2500204948eacbff008a36

  • SHA512

    50a4a9062510d8861cfd782814b34a6e76e9be9dd758ccc4735251bc0c80f75f0d44c8e3523e01e0572ecf7d57df90e34c033325a980f06589fc26faebb9ea24

  • SSDEEP

    393216:J/QBV7lCrZ6yWMwGZMipE7fd2v4NnFs87:J/QB9lCrFWMT0xvnr

Score
7/10
persistence

Malware Config

Targets

    • Target

      af48efac2b7d97cc0b70559a0a2be8cfeae961306ed16f0c91706a3bef6d61fc.exe

    • Size

      12.5MB

    • MD5

      d412865db372ff51f4237c496025639b

    • SHA1

      9cd5409d3ecf569b61beac788215ff3711c0f6fc

    • SHA256

      af48efac2b7d97cc0b70559a0a2be8cfeae961306ed16f0c91706a3bef6d61fc

    • SHA512

      661532765f49d56ff41119217b29719837f9773c396ba6d9efa95d21dcfabd3d7c89c2e688b7da9b9a984d760bc505d980be3ba2ad14b1359423a891c34508b1

    • SSDEEP

      393216:aqFZIAAa93h999999lvnMv+HmtFgWWgaxraJT4a:aPAN93h999999lMvmKgWKuTV

    Score
    7/10
    persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks