Overview

overview

8

Static

static

3

Setupprogr...34.exe

windows11-21h2-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    Feather-By-AJ-493149.zip

  • Size

    18.0MB

  • Sample

    240415-3xqvrsdf6w

  • MD5

    6c1201a1f5613b2224facfac3ab9e823

  • SHA1

    0abd74c8c87b1711cfca26536340a1e935b65bc0

  • SHA256

    ec9cfcd10001a7a164076261f29256d283e910912dfe62925478b825c9234070

  • SHA512

    254e0aabecd887c4a20d7d3432e668361cd64088abc36d3a33fb2bb3189b27ed983d4d899ef657161a95c36d71f1a91df71840689bbdc95ab28633c0dfdac5e9

  • SSDEEP

    393216:v0WyjwAisz/8m9PATCG05uoTvvQZ5RyaJJ43OzYUU:vIiszfI0517QLR3Jxz9U

Score
8/10
discoverypersistence

Malware Config

Targets

    • Target

      Setupprogram_01234.exe

    • Size

      66.0MB

    • MD5

      65d9e06acc82b510dfd2e25012578c09

    • SHA1

      f5708d1140bf9c8d29ed513737a0d4f3d1afd5e3

    • SHA256

      627a4bcf3da128a49f86f6565fc71cc7315f8c97a9e6e209ecbece4f5f98efa7

    • SHA512

      25f0df9aa521184968fb21a3cd4d0332383771975e594b75398a51bbbe79f963fe4403557c68827a50888f3c334d032b8e17340cfff147cc924323805486a632

    • SSDEEP

      196608:OK2/GVMLOC9c0K8K81cSKxxYxn85tCbxkURXs1tFJmkIIwozT:2kC9c0K8K81cSKxx+0ydXsHT

    Score
    8/10
    discoverypersistence

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Registers COM server for autorun

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks