Overview

overview

7

Static

static

1

c1957edfdb...84.exe

windows7-x64

7

c1957edfdb...84.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    c1957edfdb3f4252281d2a2d0fa49b84

  • Size

    270KB

  • Sample

    240311-zr3qlagc24

  • MD5

    c1957edfdb3f4252281d2a2d0fa49b84

  • SHA1

    baec642ce8dda6d15ec1b35d3ebeb121e34b6a2e

  • SHA256

    720b52ea417848a46b953791e83ffeba04b4b219cd9ac92fbd1412342ef5fb98

  • SHA512

    bff2ce5375c4b3c2a1fbadecd8fb29c0afd2e5a4f9650924fcacc3a77b3508f47e879e655f00ca2f717b740475a8fb4af9ac05f06381383a0d06ef00a47c2be5

  • SSDEEP

    6144:btjp1jqvoArlO+BeiY2/pWTxq/fnx7GDrRcJIcxyCq0hzf0:puvo8uVq/PERcHxyw0

Score
7/10
persistence

Malware Config

Targets

    • Target

      c1957edfdb3f4252281d2a2d0fa49b84

    • Size

      270KB

    • MD5

      c1957edfdb3f4252281d2a2d0fa49b84

    • SHA1

      baec642ce8dda6d15ec1b35d3ebeb121e34b6a2e

    • SHA256

      720b52ea417848a46b953791e83ffeba04b4b219cd9ac92fbd1412342ef5fb98

    • SHA512

      bff2ce5375c4b3c2a1fbadecd8fb29c0afd2e5a4f9650924fcacc3a77b3508f47e879e655f00ca2f717b740475a8fb4af9ac05f06381383a0d06ef00a47c2be5

    • SSDEEP

      6144:btjp1jqvoArlO+BeiY2/pWTxq/fnx7GDrRcJIcxyCq0hzf0:puvo8uVq/PERcHxyw0

    Score
    7/10
    persistence

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks