Overview

overview

7

Static

static

3

executerx.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    executerx.EXE

  • Size

    184KB

  • Sample

    240522-bn867sfh8t

  • MD5

    f34a847e097123db535071705dcacb76

  • SHA1

    1e88795a804cebc713995ceee39bbecfa3510acc

  • SHA256

    057ccff3d5c3815f97277b8821686aecdd25f3c2fd420c9ad4d7ab84f6717499

  • SHA512

    603d24c61100ae96f6a41563bc495b5221478df1b44f871a11dfb6ef8caed2591785db3051a8c399b75654d3c9cd6e4376454d2e65c9fe22a569d2c4eac7ae0e

  • SSDEEP

    3072:/MobR7ezAjLOZvmX1y5GWp1icKAArDZz4N9GhbkrNEk47GGCB:0eR7eammup0yN90QEQ

Score
7/10
persistence

Malware Config

Targets

    • Target

      executerx.EXE

    • Size

      184KB

    • MD5

      f34a847e097123db535071705dcacb76

    • SHA1

      1e88795a804cebc713995ceee39bbecfa3510acc

    • SHA256

      057ccff3d5c3815f97277b8821686aecdd25f3c2fd420c9ad4d7ab84f6717499

    • SHA512

      603d24c61100ae96f6a41563bc495b5221478df1b44f871a11dfb6ef8caed2591785db3051a8c399b75654d3c9cd6e4376454d2e65c9fe22a569d2c4eac7ae0e

    • SSDEEP

      3072:/MobR7ezAjLOZvmX1y5GWp1icKAArDZz4N9GhbkrNEk47GGCB:0eR7eammup0yN90QEQ

    Score
    7/10
    persistence

    • Executes dropped EXE

    • Adds Run key to start application

      persistence
    behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks