Overview

overview

10

Static

static

3

cfaeda36b4...3a.exe

windows7-x64

10

cfaeda36b4...3a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cfaeda36b4ef2f71a833b3d5b608713a057f95dc7dc4642ea3cf77176795103a

  • Size

    70KB

  • Sample

    240425-d38kbseg4y

  • MD5

    6cb582e040f26448f578ac2dbc793784

  • SHA1

    5db375c8fb2b52bfd425c1c405eaea679a64bc83

  • SHA256

    cfaeda36b4ef2f71a833b3d5b608713a057f95dc7dc4642ea3cf77176795103a

  • SHA512

    210480259b1188d898ae1c08d6f0d16bdac0a6eb3986d397266c66fb64f569c80cb59f6e9c0c614fab1b3fefc9ff4eb6a40e93b5186e6f244d81e170e89e9e55

  • SSDEEP

    1536:1teqKDlXvCDB04f5Gn/L8FlADNt3d1Hw8UL:Olg35GTslA5t3/w8m

Score
10/10
evasionpersistencetrojan

Malware Config

Targets

    • Target

      cfaeda36b4ef2f71a833b3d5b608713a057f95dc7dc4642ea3cf77176795103a

    • Size

      70KB

    • MD5

      6cb582e040f26448f578ac2dbc793784

    • SHA1

      5db375c8fb2b52bfd425c1c405eaea679a64bc83

    • SHA256

      cfaeda36b4ef2f71a833b3d5b608713a057f95dc7dc4642ea3cf77176795103a

    • SHA512

      210480259b1188d898ae1c08d6f0d16bdac0a6eb3986d397266c66fb64f569c80cb59f6e9c0c614fab1b3fefc9ff4eb6a40e93b5186e6f244d81e170e89e9e55

    • SSDEEP

      1536:1teqKDlXvCDB04f5Gn/L8FlADNt3d1Hw8UL:Olg35GTslA5t3/w8m

    Score
    10/10
    evasionpersistencetrojan
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

3
T1547

Registry Run Keys / Startup Folder

2
T1547.001

Winlogon Helper DLL

1
T1547.004

Privilege Escalation

Boot or Logon Autostart Execution

3
T1547

Registry Run Keys / Startup Folder

2
T1547.001

Winlogon Helper DLL

1
T1547.004

Defense Evasion

Impair Defenses

2
T1562

Disable or Modify Tools

2
T1562.001

Modify Registry

5
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks