Overview

overview

10

Static

static

10

69d8c95658...d3.exe

windows7-x64

10

69d8c95658...d3.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    69d8c95658354edd91af893eb916f563a87d3f58babb6abd06d9c663224cd2d3

  • Size

    122KB

  • Sample

    240522-2pyd7sbh3s

  • MD5

    5ed86d2dd5deec2f31dc3c77b9a217bc

  • SHA1

    181e76706ace153077cadd8d6917afaa7c5d652f

  • SHA256

    69d8c95658354edd91af893eb916f563a87d3f58babb6abd06d9c663224cd2d3

  • SHA512

    dceee63c1460e79481c2afca1778e65ccfbd65313e39161e757452a2f0d2899540e67f608e3af474666853267b632fa774f8932e8a70ce6ff8f4ac3dce630b17

  • SSDEEP

    1536:lvm1Fu8AjYaFwjRUdW7fmyY7aZYJVmy0KQbj6vbjuKoauGi4Z:6u8ANCUdgfmD7zey0KUj6TjR9i4Z

Score
10/10
evasion

Malware Config

Targets

    • Target

      69d8c95658354edd91af893eb916f563a87d3f58babb6abd06d9c663224cd2d3

    • Size

      122KB

    • MD5

      5ed86d2dd5deec2f31dc3c77b9a217bc

    • SHA1

      181e76706ace153077cadd8d6917afaa7c5d652f

    • SHA256

      69d8c95658354edd91af893eb916f563a87d3f58babb6abd06d9c663224cd2d3

    • SHA512

      dceee63c1460e79481c2afca1778e65ccfbd65313e39161e757452a2f0d2899540e67f608e3af474666853267b632fa774f8932e8a70ce6ff8f4ac3dce630b17

    • SSDEEP

      1536:lvm1Fu8AjYaFwjRUdW7fmyY7aZYJVmy0KQbj6vbjuKoauGi4Z:6u8ANCUdgfmD7zey0KUj6TjR9i4Z

    Score
    10/10
    evasion

    • Modifies visibility of file extensions in Explorer

      evasion

    • UPX dump on OEP (original entry point)

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

1
T1564

Hidden Files and Directories

1
T1564.001

Modify Registry

2
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks