General
-
Target
7b28cda4b59cc5235f1dd4e9412e1057
-
Size
139KB
-
Sample
240127-yv7y2sbbe5
-
MD5
7b28cda4b59cc5235f1dd4e9412e1057
-
SHA1
7f718dde53ad6995d15d35fcbcc621190a87ed21
-
SHA256
7b9cd5a84371f3f638e133f2b821e856aaa277dd1feb0fec5243e5b4b380fe61
-
SHA512
cab5f82089533a0979929a80e1465419bd55789ebcec21410d7c204b2739926d5adf0b0d1afbe16107765b61ce499e5b3d23f608c957a5216d29eb0a2c382e6d
-
SSDEEP
1536:jjVeoUGMZn1iPTk+P/KKe8m5r44HlM9m9dwbUJ1YWJ+v1CHisEdHJp1IHtC1PBq6:NeohMZ8zm5ri9YdlJCZvhsq3ecLaq8dM
Static task
static1
Behavioral task
behavioral1
Sample
7b28cda4b59cc5235f1dd4e9412e1057.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
7b28cda4b59cc5235f1dd4e9412e1057.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
7b28cda4b59cc5235f1dd4e9412e1057
-
Size
139KB
-
MD5
7b28cda4b59cc5235f1dd4e9412e1057
-
SHA1
7f718dde53ad6995d15d35fcbcc621190a87ed21
-
SHA256
7b9cd5a84371f3f638e133f2b821e856aaa277dd1feb0fec5243e5b4b380fe61
-
SHA512
cab5f82089533a0979929a80e1465419bd55789ebcec21410d7c204b2739926d5adf0b0d1afbe16107765b61ce499e5b3d23f608c957a5216d29eb0a2c382e6d
-
SSDEEP
1536:jjVeoUGMZn1iPTk+P/KKe8m5r44HlM9m9dwbUJ1YWJ+v1CHisEdHJp1IHtC1PBq6:NeohMZ8zm5ri9YdlJCZvhsq3ecLaq8dM
Score8/10-
Modifies Windows Firewall
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-
MITRE ATT&CK Matrix ATT&CK v13
Persistence
Create or Modify System Process
1Windows Service
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1