Overview

overview

10

Static

static

10

cac78fb3b8...09.exe

windows7-x64

10

cac78fb3b8...09.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cac78fb3b8f68524d610881179f8f7e0f46d64c144458cbf6eff0a4c49fd6d09

  • Size

    318KB

  • Sample

    240313-3cmydacb8s

  • MD5

    a4d1f2f5dd5b7e7e892a756227f8bb1c

  • SHA1

    b4ff7d98e09139f18cd169566c12554b891da961

  • SHA256

    cac78fb3b8f68524d610881179f8f7e0f46d64c144458cbf6eff0a4c49fd6d09

  • SHA512

    12fbefc21dc64e51b2e1e2cf8666c868663897293692998200ee03da27add5d4098de30b42c94ae28e1c8e6ae214397557bbaa59cd33104ee2fa71163f11f336

  • SSDEEP

    6144:X4PGRVEQHdMcm4FmowdHoS7c5cm4FmowdHoSrNF9xRVEQHd4:RO4wFHoS04wFHoSrZx8

Score
10/10
persistence

Malware Config

Targets

    • Target

      cac78fb3b8f68524d610881179f8f7e0f46d64c144458cbf6eff0a4c49fd6d09

    • Size

      318KB

    • MD5

      a4d1f2f5dd5b7e7e892a756227f8bb1c

    • SHA1

      b4ff7d98e09139f18cd169566c12554b891da961

    • SHA256

      cac78fb3b8f68524d610881179f8f7e0f46d64c144458cbf6eff0a4c49fd6d09

    • SHA512

      12fbefc21dc64e51b2e1e2cf8666c868663897293692998200ee03da27add5d4098de30b42c94ae28e1c8e6ae214397557bbaa59cd33104ee2fa71163f11f336

    • SSDEEP

      6144:X4PGRVEQHdMcm4FmowdHoS7c5cm4FmowdHoSrNF9xRVEQHd4:RO4wFHoS04wFHoSrZx8

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • UPX dump on OEP (original entry point)

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks