Overview

overview

10

Static

static

3

f54606839f...55.exe

windows7-x64

10

f54606839f...55.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f54606839f3a10dfb81f4178990478c3786a09005287294133e114332a3e6c55

  • Size

    45KB

  • Sample

    240517-gwyckach3y

  • MD5

    2cf1117e892eed7834d360a43b9b17bf

  • SHA1

    0d4c2b44fa808c0c2cbf531a00f06e56f9086283

  • SHA256

    f54606839f3a10dfb81f4178990478c3786a09005287294133e114332a3e6c55

  • SHA512

    184ceaf0a1566b947deac75d73022fbfd8aea6430ccc6bf3e284d0f658098fcd8d8d9a0ad7c8a7895545db30ced523e4e427f1ac2f3e6dae20e24ec4dfaafd00

  • SSDEEP

    768:WAUJmQCcmLCXQq6fsKiJYsIkjJVzqsVG5kuGVAQvKMb7rL:RUNHFKQbIkHvGkAFu73

Score
10/10
evasionpersistencetrojan

Malware Config

Targets

    • Target

      f54606839f3a10dfb81f4178990478c3786a09005287294133e114332a3e6c55

    • Size

      45KB

    • MD5

      2cf1117e892eed7834d360a43b9b17bf

    • SHA1

      0d4c2b44fa808c0c2cbf531a00f06e56f9086283

    • SHA256

      f54606839f3a10dfb81f4178990478c3786a09005287294133e114332a3e6c55

    • SHA512

      184ceaf0a1566b947deac75d73022fbfd8aea6430ccc6bf3e284d0f658098fcd8d8d9a0ad7c8a7895545db30ced523e4e427f1ac2f3e6dae20e24ec4dfaafd00

    • SSDEEP

      768:WAUJmQCcmLCXQq6fsKiJYsIkjJVzqsVG5kuGVAQvKMb7rL:RUNHFKQbIkHvGkAFu73

    Score
    10/10
    evasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Drops file in Drivers directory

    • Modifies Installed Components in the registry

      persistence

    • Sets file execution options in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Modifies WinLogon

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks