Overview

overview

10

Static

static

10

70b6ed6d84...18.exe

windows7-x64

10

70b6ed6d84...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    70b6ed6d84c20515131424d062280a6a736461dd53a2981e2f56c99a30293218

  • Size

    108KB

  • Sample

    240424-2zls6abc4y

  • MD5

    863d3f148d38274b44a3af58b16eb685

  • SHA1

    d8c3894f6afe7e9078ac0f8f42178e7680763c05

  • SHA256

    70b6ed6d84c20515131424d062280a6a736461dd53a2981e2f56c99a30293218

  • SHA512

    95a12612b33879d959ddc58c19db0ad34aa9324f785b86580ad399717a28a8978754c4aecc3b760dfd0a008820fd1c9c8e232bfe2da6d775a47a56388d4f58b7

  • SSDEEP

    1536:HaiqH1s+kCtrA2UMT0mTFibDKa1AihYb7NMKT/rlJnx:q1B31bdBob2QAiENMKjhX

Score
10/10
persistence

Malware Config

Targets

    • Target

      70b6ed6d84c20515131424d062280a6a736461dd53a2981e2f56c99a30293218

    • Size

      108KB

    • MD5

      863d3f148d38274b44a3af58b16eb685

    • SHA1

      d8c3894f6afe7e9078ac0f8f42178e7680763c05

    • SHA256

      70b6ed6d84c20515131424d062280a6a736461dd53a2981e2f56c99a30293218

    • SHA512

      95a12612b33879d959ddc58c19db0ad34aa9324f785b86580ad399717a28a8978754c4aecc3b760dfd0a008820fd1c9c8e232bfe2da6d775a47a56388d4f58b7

    • SSDEEP

      1536:HaiqH1s+kCtrA2UMT0mTFibDKa1AihYb7NMKT/rlJnx:q1B31bdBob2QAiENMKjhX

    Score
    10/10
    persistence

    • Modifies WinLogon for persistence

      persistence

    • Detects executables built or packed with MPress PE compressor

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks