Overview

overview

10

Static

static

3

e12b1c2768...60.exe

windows7-x64

10

e12b1c2768...60.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e12b1c276807411ca2966414fb321260

  • Size

    1.1MB

  • Sample

    240327-jtxz5afh65

  • MD5

    e12b1c276807411ca2966414fb321260

  • SHA1

    6221e256963eebbdc9ee056d41a0e3edfa5a843a

  • SHA256

    2ae8e82ecf0d6932b741f9f8c6acbd2e99347a8a85016e6cdf0669b222334366

  • SHA512

    5d267960c0134bef9500262d557b18ffed694860f008f41142d1de2169559bf58130a450924a7e85f85947d126ebf9846a67e3e48af15ba177e48fb5ede5564e

  • SSDEEP

    12288:UZWtI6RkCerQZb+md4w1UMOrerQZb+md4w1UeOB0H:UuhaCerQZb+md4wm9erQZb+md4wmeOM

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      e12b1c276807411ca2966414fb321260

    • Size

      1.1MB

    • MD5

      e12b1c276807411ca2966414fb321260

    • SHA1

      6221e256963eebbdc9ee056d41a0e3edfa5a843a

    • SHA256

      2ae8e82ecf0d6932b741f9f8c6acbd2e99347a8a85016e6cdf0669b222334366

    • SHA512

      5d267960c0134bef9500262d557b18ffed694860f008f41142d1de2169559bf58130a450924a7e85f85947d126ebf9846a67e3e48af15ba177e48fb5ede5564e

    • SSDEEP

      12288:UZWtI6RkCerQZb+md4w1UMOrerQZb+md4w1UeOB0H:UuhaCerQZb+md4wm9erQZb+md4wmeOM

    Score
    10/10
    evasionpersistence

    • Modifies visibility of file extensions in Explorer

      evasion

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

      evasion

    • Sets file execution options in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks