Overview

overview

10

Static

static

3

7a2eff9e2d...6d.exe

windows7-x64

10

7a2eff9e2d...6d.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7a2eff9e2d63131b750c9c16d3fa9d05901c9d262122383053422464e541f56d

  • Size

    296KB

  • Sample

    240522-3fgwjadb53

  • MD5

    d359ed27c95f19beb053b7ecc347cbdf

  • SHA1

    c656a97e6c8b81bd737a87901c9b0547c7128147

  • SHA256

    7a2eff9e2d63131b750c9c16d3fa9d05901c9d262122383053422464e541f56d

  • SHA512

    0dabfcecded66facf247d01a7b741f1cc4d257bdbf3e3ac8e3cb7f08489e738b0aa3ec86cc347095652c1a85506f9c51196f9179122d5268fb534e75b46237ed

  • SSDEEP

    3072:4PXodYtEkqVUHgd8UARA1+6NhZ6P0c9fpxg6pg:ZofMTNPKG6g

Score
10/10
persistence

Malware Config

Targets

    • Target

      7a2eff9e2d63131b750c9c16d3fa9d05901c9d262122383053422464e541f56d

    • Size

      296KB

    • MD5

      d359ed27c95f19beb053b7ecc347cbdf

    • SHA1

      c656a97e6c8b81bd737a87901c9b0547c7128147

    • SHA256

      7a2eff9e2d63131b750c9c16d3fa9d05901c9d262122383053422464e541f56d

    • SHA512

      0dabfcecded66facf247d01a7b741f1cc4d257bdbf3e3ac8e3cb7f08489e738b0aa3ec86cc347095652c1a85506f9c51196f9179122d5268fb534e75b46237ed

    • SSDEEP

      3072:4PXodYtEkqVUHgd8UARA1+6NhZ6P0c9fpxg6pg:ZofMTNPKG6g

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks