Overview

overview

10

Static

static

3

36b1304c7d...9a.exe

windows7-x64

10

36b1304c7d...9a.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    36b1304c7d2ada6c2c0350d1ec360ad4988b30e7037fa2c51d3e29aeb3d0ba9a

  • Size

    192KB

  • Sample

    240404-ylp2wahd59

  • MD5

    0db49315366c33e29c9ddb0147b52530

  • SHA1

    968ec72d31abd7893bc49d70920120966c30406d

  • SHA256

    36b1304c7d2ada6c2c0350d1ec360ad4988b30e7037fa2c51d3e29aeb3d0ba9a

  • SHA512

    668cb204692f2edfd139d68b7452ddbad34b99eac9a84e13fe88d4720d775659577568c03fd467fc433b2422d21051614e34b73d7edcd454a16ef1ae7ba2615f

  • SSDEEP

    3072:tsjFqM3Z3jaaC3M0D3YeRX2qOQpq3HNr5GnV54c4NthaeKU3d5vEiLqsC6vxfdwC:tshq63jaaMTRmqO+uNk54t3haeTFLelw

Score
10/10
persistence

Malware Config

Targets

    • Target

      36b1304c7d2ada6c2c0350d1ec360ad4988b30e7037fa2c51d3e29aeb3d0ba9a

    • Size

      192KB

    • MD5

      0db49315366c33e29c9ddb0147b52530

    • SHA1

      968ec72d31abd7893bc49d70920120966c30406d

    • SHA256

      36b1304c7d2ada6c2c0350d1ec360ad4988b30e7037fa2c51d3e29aeb3d0ba9a

    • SHA512

      668cb204692f2edfd139d68b7452ddbad34b99eac9a84e13fe88d4720d775659577568c03fd467fc433b2422d21051614e34b73d7edcd454a16ef1ae7ba2615f

    • SSDEEP

      3072:tsjFqM3Z3jaaC3M0D3YeRX2qOQpq3HNr5GnV54c4NthaeKU3d5vEiLqsC6vxfdwC:tshq63jaaMTRmqO+uNk54t3haeTFLelw

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks