Overview

overview

10

Static

static

10

0a9db6e9e1...4a.exe

windows7-x64

9

0a9db6e9e1...4a.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    0a9db6e9e13a8c8e14b3562c4af3d96d4c7e68a00ffbb722d2caa2c037ba334a

  • Size

    107KB

  • Sample

    240420-w54m9seg66

  • MD5

    33e06f65b319484f48184bdbf6cba33f

  • SHA1

    3081c2831095f50b15728352b3cb70974512774b

  • SHA256

    0a9db6e9e13a8c8e14b3562c4af3d96d4c7e68a00ffbb722d2caa2c037ba334a

  • SHA512

    bfe762c92f4f02ca174c794f37bb243720014d869f964d65b1ae201b1ce8ea05a70758fd6b6845df9e74848237386237f08338fda1f944832336de6fd4b62c3a

  • SSDEEP

    1536:+7PvnKhWQtC3Izj6TrlDa2z6Ewd0zvPTQw9LBZRQ8V3zhbPp:uPvKztiIzj6xtDLBZRQ8Vj5Pp

Score
10/10
persistence

Malware Config

Targets

    • Target

      0a9db6e9e13a8c8e14b3562c4af3d96d4c7e68a00ffbb722d2caa2c037ba334a

    • Size

      107KB

    • MD5

      33e06f65b319484f48184bdbf6cba33f

    • SHA1

      3081c2831095f50b15728352b3cb70974512774b

    • SHA256

      0a9db6e9e13a8c8e14b3562c4af3d96d4c7e68a00ffbb722d2caa2c037ba334a

    • SHA512

      bfe762c92f4f02ca174c794f37bb243720014d869f964d65b1ae201b1ce8ea05a70758fd6b6845df9e74848237386237f08338fda1f944832336de6fd4b62c3a

    • SSDEEP

      1536:+7PvnKhWQtC3Izj6TrlDa2z6Ewd0zvPTQw9LBZRQ8V3zhbPp:uPvKztiIzj6xtDLBZRQ8Vj5Pp

    Score
    9/10
    persistence

    • Detects executables packed with eXPressor

    • Modifies Installed Components in the registry

      persistence

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks