Overview

overview

10

Static

static

3

73c7828618...07.exe

windows7-x64

10

73c7828618...07.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    73c7828618a5923dd12a498e1204dc174aabd6a3469a4110d997be69b2342c07

  • Size

    296KB

  • Sample

    240522-2477ysce8w

  • MD5

    afe51afa5fceeadeac0d85f005e8a784

  • SHA1

    6fd383a34ad26e959fb5029f894370d1972fa48f

  • SHA256

    73c7828618a5923dd12a498e1204dc174aabd6a3469a4110d997be69b2342c07

  • SHA512

    c7f33f19de7f1be14bce59ad884ebd142eaab7c2cd06f62e3b9ded7860548931688be5e381b57aa7caf42bab7fed103dfcacf8309420e56d02b194b1b8fbcb47

  • SSDEEP

    3072:4Xrek0kJsTS91UrDYgB+NtrTARA1+6NhZ6P0c9fpxg6pg:z6gS91skNtr9NPKG6g

Score
10/10
persistence

Malware Config

Targets

    • Target

      73c7828618a5923dd12a498e1204dc174aabd6a3469a4110d997be69b2342c07

    • Size

      296KB

    • MD5

      afe51afa5fceeadeac0d85f005e8a784

    • SHA1

      6fd383a34ad26e959fb5029f894370d1972fa48f

    • SHA256

      73c7828618a5923dd12a498e1204dc174aabd6a3469a4110d997be69b2342c07

    • SHA512

      c7f33f19de7f1be14bce59ad884ebd142eaab7c2cd06f62e3b9ded7860548931688be5e381b57aa7caf42bab7fed103dfcacf8309420e56d02b194b1b8fbcb47

    • SSDEEP

      3072:4Xrek0kJsTS91UrDYgB+NtrTARA1+6NhZ6P0c9fpxg6pg:z6gS91skNtr9NPKG6g

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks