Overview

overview

7

Static

static

3

73f3b0607b...b9.exe

windows7-x64

7

73f3b0607b...b9.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    73f3b0607b51316625fb6c58d8f54cdb99da3fa61ae9e03e144ee41fdcb85fb9

  • Size

    408KB

  • Sample

    240522-25lekscf22

  • MD5

    6307d326021f0e5ea0f9b2fdfaaa47d1

  • SHA1

    5e7d7c23ad01898b2e0a8904795c8a1f32d186b0

  • SHA256

    73f3b0607b51316625fb6c58d8f54cdb99da3fa61ae9e03e144ee41fdcb85fb9

  • SHA512

    e2c91fab6b4e9f0f63ac5a566b917deddba931fa2c5f28a8456a720423c2255e0fb15c52d54eafc84e05e042036032e257a2348c710469f8766bf0fc89d77e45

  • SSDEEP

    6144:4jlYKRF/LReWAsUyCxG8fqLPJVnM55pXmiu1NdSRf:4jauDReWfXPc55pXmiuXif

Score
7/10
persistence

Malware Config

Targets

    • Target

      73f3b0607b51316625fb6c58d8f54cdb99da3fa61ae9e03e144ee41fdcb85fb9

    • Size

      408KB

    • MD5

      6307d326021f0e5ea0f9b2fdfaaa47d1

    • SHA1

      5e7d7c23ad01898b2e0a8904795c8a1f32d186b0

    • SHA256

      73f3b0607b51316625fb6c58d8f54cdb99da3fa61ae9e03e144ee41fdcb85fb9

    • SHA512

      e2c91fab6b4e9f0f63ac5a566b917deddba931fa2c5f28a8456a720423c2255e0fb15c52d54eafc84e05e042036032e257a2348c710469f8766bf0fc89d77e45

    • SSDEEP

      6144:4jlYKRF/LReWAsUyCxG8fqLPJVnM55pXmiu1NdSRf:4jauDReWfXPc55pXmiuXif

    Score
    7/10
    persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks