Overview

overview

7

Static

static

3

9579d50a7a...8f.exe

windows7-x64

7

9579d50a7a...8f.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9579d50a7aef7f57306c069a44bd058f

  • Size

    32KB

  • Sample

    240206-z2e3aagcg7

  • MD5

    9579d50a7aef7f57306c069a44bd058f

  • SHA1

    94c6e227ec142e5b2f97a85f4e3a985e489252ec

  • SHA256

    cf2a8f722a84292355c825da998a10882c4b9f90e70c5f3698bc736d75f1632c

  • SHA512

    cfc3a38afffd37d778f55d950db2788d530564c6e958495aa476216e587a720bbe8eba8463de0326f562420f5569805443d118912f7365d07857e25ebb2cbdcf

  • SSDEEP

    768:7fHoqqjQjVfeAM4S/WW0aVCnE6fS87CcHhTvBA6+Et/EZhF:7/TqjQ0AMj/WW0aOzfF7CcHsnfHF

Score
7/10
persistence

Malware Config

Targets

    • Target

      9579d50a7aef7f57306c069a44bd058f

    • Size

      32KB

    • MD5

      9579d50a7aef7f57306c069a44bd058f

    • SHA1

      94c6e227ec142e5b2f97a85f4e3a985e489252ec

    • SHA256

      cf2a8f722a84292355c825da998a10882c4b9f90e70c5f3698bc736d75f1632c

    • SHA512

      cfc3a38afffd37d778f55d950db2788d530564c6e958495aa476216e587a720bbe8eba8463de0326f562420f5569805443d118912f7365d07857e25ebb2cbdcf

    • SSDEEP

      768:7fHoqqjQjVfeAM4S/WW0aVCnE6fS87CcHhTvBA6+Et/EZhF:7/TqjQ0AMj/WW0aOzfF7CcHsnfHF

    Score
    7/10
    persistence

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks