Overview

overview

8

Static

static

3

rwifoujn.t...ng.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    rwifoujn.txt.exe.png.exe

  • Size

    9.9MB

  • Sample

    240512-qdqdnsga4w

  • MD5

    dd7ad7b8709ab183459f0294dc46775d

  • SHA1

    37531f34181357f059cd2ae54ecb34730c28c2eb

  • SHA256

    da202ab45c682d0b450e212a6287dfe24cad6b94407a28ea8428e490cf38f1a0

  • SHA512

    56bbfec92e6e7814cc35368e24f436320bbdeabe7bfe88e2ee321790296c1351d28ed0f1a16d16d4bce6d5fd40d47edd784b1a8d6e2c997df0f02e2fca64e4f4

  • SSDEEP

    196608:QsmWA1HeT39IigleE9TFa0Z8DOjCdylhY8gh70W8/LeoCZownzbQW77x:e1+TtIiHY9Z8D8CclyhCW8SaUn1x

Score
8/10
discoveryexploitpyinstaller

Malware Config

Targets

    • Target

      rwifoujn.txt.exe.png.exe

    • Size

      9.9MB

    • MD5

      dd7ad7b8709ab183459f0294dc46775d

    • SHA1

      37531f34181357f059cd2ae54ecb34730c28c2eb

    • SHA256

      da202ab45c682d0b450e212a6287dfe24cad6b94407a28ea8428e490cf38f1a0

    • SHA512

      56bbfec92e6e7814cc35368e24f436320bbdeabe7bfe88e2ee321790296c1351d28ed0f1a16d16d4bce6d5fd40d47edd784b1a8d6e2c997df0f02e2fca64e4f4

    • SSDEEP

      196608:QsmWA1HeT39IigleE9TFa0Z8DOjCdylhY8gh70W8/LeoCZownzbQW77x:e1+TtIiHY9Z8D8CclyhCW8SaUn1x

    Score
    8/10
    discoveryexploit

    • Possible privilege escalation attempt

      exploit

    • Loads dropped DLL

    • Modifies file permissions

      discovery
    behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Tasks