General
-
Target
Crack.rar
-
Size
34KB
-
Sample
240309-j9g9lseb66
-
MD5
6e3b758f66ad4ffe0517fb7d0c80347e
-
SHA1
66c4c860dd92c90c388b1ee3cf9749ce126dc079
-
SHA256
a59e7c4d5e92665f25d5c93eba73804364a8ec3cd600fc10f5ece38d60c15d46
-
SHA512
a39ac03242a744f272dea11419d761052b2071e8c119457c59a571a666026ae91065b227fb3f581e093a2363fb9a8bb8c19dd225791a053fc503cdaef76de7cf
-
SSDEEP
768:Fz6Gz7aqquSAqI94qm0WY7ZamIcTcPt2TVp/4qrAaK:x6NqD1vmBCZH3Tmt2ppwZd
Static task
static1
Behavioral task
behavioral1
Sample
Crack/Keygen.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
Crack/Keygen.exe
Resource
win11-20240221-en
Malware Config
Extracted
C:\Users\Admin\Desktop\@[email protected]
wannacry
115p7UMMngoj1pMvkpHijcRdfJNXj6LrLn
Targets
-
-
Target
Crack/Keygen.exe
-
Size
47KB
-
MD5
38f93b2d9313c53f1de7222550f1d6d3
-
SHA1
11384e7845abff814eb04e4c6fb35a28003814fd
-
SHA256
244113c644ffe40bdd67d23d1d6261ccf7875af5ff5b80b1ecacf84d7542a487
-
SHA512
cbcb370b1cbfe62b85d3236345ff937c88226f3bbce728a66f0cb303fec35402fd105e680da899afb7ff74c8ab8687c8e039a3fabf1b072cc58ee2e51472f3ba
-
SSDEEP
768:pXMi+u07J5Q9tTD6IA6WfFhi9ShUD+G3eKf05txp/2/UM5uYEYwt:pchvQHD6I5WfFIShUr3XSp2UM5u7Ywt
-
Downloads MZ/PE file
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies file permissions
-
Adds Run key to start application
-
Legitimate hosting services abused for malware hosting/C2
-
Sets desktop wallpaper using registry
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1