Overview

overview

10

Static

static

3

cd9ccb3e7a...28.exe

windows7-x64

10

cd9ccb3e7a...28.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cd9ccb3e7af60cb025e7b219fa417028

  • Size

    379KB

  • Sample

    240316-kng76ahd84

  • MD5

    cd9ccb3e7af60cb025e7b219fa417028

  • SHA1

    17c91cb6345a5d37330ba73305f546166114fe2e

  • SHA256

    336e0323e0a9004fd9ea30eb348d0b669ed70c7a61c77c51d6485525e03d535d

  • SHA512

    b0b85789a9160c2974063169b20c2f7add837aa244449c4c0cfcddddb6d0e579caa35f4a95526b05b34197fd4d4566a8a878bb123a83763a2b9b320489e79ee2

  • SSDEEP

    6144:Sg0Vb/ZPiiFvbPidy5tgsLzpBNWP1ZCOLkErCaehJou58o3jo4eVH:wbhPii5iyxLzNsZxLkHhJpqo3hep

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      cd9ccb3e7af60cb025e7b219fa417028

    • Size

      379KB

    • MD5

      cd9ccb3e7af60cb025e7b219fa417028

    • SHA1

      17c91cb6345a5d37330ba73305f546166114fe2e

    • SHA256

      336e0323e0a9004fd9ea30eb348d0b669ed70c7a61c77c51d6485525e03d535d

    • SHA512

      b0b85789a9160c2974063169b20c2f7add837aa244449c4c0cfcddddb6d0e579caa35f4a95526b05b34197fd4d4566a8a878bb123a83763a2b9b320489e79ee2

    • SSDEEP

      6144:Sg0Vb/ZPiiFvbPidy5tgsLzpBNWP1ZCOLkErCaehJou58o3jo4eVH:wbhPii5iyxLzNsZxLkHhJpqo3hep

    Score
    10/10
    evasionpersistence

    • Modifies firewall policy service

      evasion

    • Modifies Windows Firewall

      evasion

    • Stops running service(s)

      evasion

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks