Overview

overview

10

Static

static

3

17ddfa0820...ab.exe

windows7-x64

10

17ddfa0820...ab.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    17ddfa0820c6b88e8572b25a2eeb4da854ed789a23ff36ea10af2f3d992ab1ab

  • Size

    37KB

  • Sample

    240407-xmrresca23

  • MD5

    30c1365a3a6f13ca3f1d8a26f532b687

  • SHA1

    0bf30152b0dc542396fb90a07917d12df779da87

  • SHA256

    17ddfa0820c6b88e8572b25a2eeb4da854ed789a23ff36ea10af2f3d992ab1ab

  • SHA512

    673fadd9f537e5ec523064c98e0a14543fb3a6b3959f63c8acad82100b4b2f87c422c6c7c37422ff5f1513c0e609910c4cef6dd344b57de68c43571abcbda0e3

  • SSDEEP

    384:kbHQR8pa/xi51iuMYZg99VhYTue4F3DofCfnI8sLL5j:kbdd5UuMYZGVhYyxZD9/I8CL5

Score
10/10
ginkpersistenceworm

Malware Config

Targets

    • Target

      17ddfa0820c6b88e8572b25a2eeb4da854ed789a23ff36ea10af2f3d992ab1ab

    • Size

      37KB

    • MD5

      30c1365a3a6f13ca3f1d8a26f532b687

    • SHA1

      0bf30152b0dc542396fb90a07917d12df779da87

    • SHA256

      17ddfa0820c6b88e8572b25a2eeb4da854ed789a23ff36ea10af2f3d992ab1ab

    • SHA512

      673fadd9f537e5ec523064c98e0a14543fb3a6b3959f63c8acad82100b4b2f87c422c6c7c37422ff5f1513c0e609910c4cef6dd344b57de68c43571abcbda0e3

    • SSDEEP

      384:kbHQR8pa/xi51iuMYZg99VhYTue4F3DofCfnI8sLL5j:kbdd5UuMYZGVhYyxZD9/I8CL5

    Score
    10/10
    ginkpersistenceworm
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks