Overview

overview

10

Static

static

3

508ed71dfa...9a.exe

windows7-x64

10

508ed71dfa...9a.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    508ed71dfae8b32b3a72a053b2a7f29c99e43b124848ca77dd335f7c6ad9349a

  • Size

    46KB

  • Sample

    240501-1g4qksba53

  • MD5

    861af7e40d3735bc41227706c038ad85

  • SHA1

    a88606b1c5cfcba537ebee675d774833ce6fcd8a

  • SHA256

    508ed71dfae8b32b3a72a053b2a7f29c99e43b124848ca77dd335f7c6ad9349a

  • SHA512

    752ef6dcb9b81b2793da81f65ab3ae577ef918648ceb5879849ec1211f337a79ce2be29bdd5290b49afefed5af0f9f14f5dad03416ae76564927dc525a137c4e

  • SSDEEP

    768:jIUk75vHgChlWCQGJmtP3UYEwgODEaXHokp8Hq:jsgCXQkmtPIlODEaXHx8Hq

Score
10/10
evasionpersistencetrojan

Malware Config

Targets

    • Target

      508ed71dfae8b32b3a72a053b2a7f29c99e43b124848ca77dd335f7c6ad9349a

    • Size

      46KB

    • MD5

      861af7e40d3735bc41227706c038ad85

    • SHA1

      a88606b1c5cfcba537ebee675d774833ce6fcd8a

    • SHA256

      508ed71dfae8b32b3a72a053b2a7f29c99e43b124848ca77dd335f7c6ad9349a

    • SHA512

      752ef6dcb9b81b2793da81f65ab3ae577ef918648ceb5879849ec1211f337a79ce2be29bdd5290b49afefed5af0f9f14f5dad03416ae76564927dc525a137c4e

    • SSDEEP

      768:jIUk75vHgChlWCQGJmtP3UYEwgODEaXHokp8Hq:jsgCXQkmtPIlODEaXHx8Hq

    Score
    10/10
    evasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Drops file in Drivers directory

    • Modifies Installed Components in the registry

      persistence

    • Sets file execution options in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Modifies WinLogon

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks