Overview

overview

7

Static

static

3

6abd102cf7...02.exe

windows7-x64

7

6abd102cf7...02.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6abd102cf78fddf4ef3d9f6990eedf4b82eabfc43546a8cfd51f024e06235502

  • Size

    80KB

  • Sample

    240521-x2p65sfg7z

  • MD5

    1dae138b9c99e05bbc2de5bac57db9f4

  • SHA1

    d6a6e4f6fbbbcaa8356867697adc698b4cbc2656

  • SHA256

    6abd102cf78fddf4ef3d9f6990eedf4b82eabfc43546a8cfd51f024e06235502

  • SHA512

    54e370f0597c8c8ef4f1c4bc0b030df6491fd9223bfb54f6644f52877c09d5873f5bd818f7d328f1919cc7b0f5d083bbf297e5b7a300017ab71908b4fe42c4e9

  • SSDEEP

    1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOcK+FVz:GhfxHNIreQm+HidK+FVz

Score
7/10
persistence

Malware Config

Targets

    • Target

      6abd102cf78fddf4ef3d9f6990eedf4b82eabfc43546a8cfd51f024e06235502

    • Size

      80KB

    • MD5

      1dae138b9c99e05bbc2de5bac57db9f4

    • SHA1

      d6a6e4f6fbbbcaa8356867697adc698b4cbc2656

    • SHA256

      6abd102cf78fddf4ef3d9f6990eedf4b82eabfc43546a8cfd51f024e06235502

    • SHA512

      54e370f0597c8c8ef4f1c4bc0b030df6491fd9223bfb54f6644f52877c09d5873f5bd818f7d328f1919cc7b0f5d083bbf297e5b7a300017ab71908b4fe42c4e9

    • SSDEEP

      1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOcK+FVz:GhfxHNIreQm+HidK+FVz

    Score
    7/10
    persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Event Triggered Execution

1
T1546

Change Default File Association

1
T1546.001

Privilege Escalation

Event Triggered Execution

1
T1546

Change Default File Association

1
T1546.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks