Overview

overview

7

Static

static

3

12ce33db88...b5.exe

windows7-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    16696705991.zip

  • Size

    5.3MB

  • Sample

    240424-jqepdafg79

  • MD5

    45984621c3271bd577ba34c2e6a2c93c

  • SHA1

    1c70007dbbea4632df72a1ed99965caa48404db8

  • SHA256

    73c0d610dd387260f7f19ae9b1d4d2df2babbc79717db0b3ba57983cdc9d41c4

  • SHA512

    f0bd32902a48769e5d77a604ba56665aa9b9bc8e410c6e42c3ab40dc1ce42c92646c724eee9a8e3b9330cf1d676b5c7db6fa0a9ed782b79be611e97bfcaeb9c2

  • SSDEEP

    98304:l+8e7fOnsSJTDPCR7K7RjOE/4DOUcJp66OuPASeTxK8XLquTkegE6seAoJp:w3aTDPCJ+VOHOBP6fu4SmK87CegEfmp

Score
7/10
persistencepyinstaller

Malware Config

Targets

    • Target

      12ce33db888e9ea16a9c1f40c152e5615197ab944d12f34248fd3a2ae4d5f7b5

    • Size

      5.4MB

    • MD5

      2c037c25dc3b42554b2b87d0a6057021

    • SHA1

      ef5722f340cd6799875ba688b9a3c0b99d0fc52e

    • SHA256

      12ce33db888e9ea16a9c1f40c152e5615197ab944d12f34248fd3a2ae4d5f7b5

    • SHA512

      39c1b4482eb795c64dc234d18c15e511b636d1e65170f942645915f1a53817fde32a916d66c298699fdc53b564d34c20b79bd75d2f68dd536f58a8724329877e

    • SSDEEP

      98304:U/q2oV1JGOFO1i6wiAfANeDKoPpHZKpFRW/jTIh5Vq0+6bOP:yoVfG1uDucpHUFRW/wh580+Q2

    Score
    7/10
    persistence

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks