Overview

overview

10

Static

static

3

8c5d3199cf...66.exe

windows7-x64

10

8c5d3199cf...66.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    8c5d3199cf17dfd40b2b306e5f9a8310c47560d87fdd6751e81454d43f73ea66.exe

  • Size

    42KB

  • Sample

    240123-myz7tshfcq

  • MD5

    707127834746a6d06dfa2c1920f79161

  • SHA1

    66008c60064ff158bbe82f5e5e8b8c512ff76c8b

  • SHA256

    384e768423f80a57a10fe42e6876e11721001e3bab29be9213d89b99705ff16a

  • SHA512

    99bf86a77c0a000dcc3af0c92f9fe61f79ff884cfd9c44314c461315b548f465b64949a57581f3efe772abc4467b392990ce56f807bd5ec1ffb0fd745b67f55c

  • SSDEEP

    768:WAUJmQCcmLCXQq6fsKiJYsIkjJVzqsVG5kuGVAQv2HQ:RUNHFKQbIkHvGkAI

Score
10/10
evasionpersistencetrojan

Malware Config

Targets

    • Target

      8c5d3199cf17dfd40b2b306e5f9a8310c47560d87fdd6751e81454d43f73ea66.exe

    • Size

      42KB

    • MD5

      707127834746a6d06dfa2c1920f79161

    • SHA1

      66008c60064ff158bbe82f5e5e8b8c512ff76c8b

    • SHA256

      384e768423f80a57a10fe42e6876e11721001e3bab29be9213d89b99705ff16a

    • SHA512

      99bf86a77c0a000dcc3af0c92f9fe61f79ff884cfd9c44314c461315b548f465b64949a57581f3efe772abc4467b392990ce56f807bd5ec1ffb0fd745b67f55c

    • SSDEEP

      768:WAUJmQCcmLCXQq6fsKiJYsIkjJVzqsVG5kuGVAQv2HQ:RUNHFKQbIkHvGkAI

    Score
    10/10
    evasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Drops file in Drivers directory

    • Modifies Installed Components in the registry

      persistence

    • Sets file execution options in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Modifies WinLogon

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks