Overview

overview

10

Static

static

3

0971fe5700...d4.exe

windows7-x64

10

0971fe5700...d4.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0971fe5700a6bbf5d8141d588bf770c370a4e003a242d317f67fd6c7a0827dd4

  • Size

    34KB

  • Sample

    240522-w269zsbh5w

  • MD5

    5fa1367d1793e42432e0db4ac00e6cf4

  • SHA1

    79d8504456b883eed9ddc59c96c67c4a4a4e8f1a

  • SHA256

    0971fe5700a6bbf5d8141d588bf770c370a4e003a242d317f67fd6c7a0827dd4

  • SHA512

    8c80cd3f0f8fc333d30717cfa0c6bfb9dbd8b84cf5da3bf66b7afe7303182990988288f2673f2c1d8fb2188a649ce4ad8251f04e5da780bab79d91525effbcea

  • SSDEEP

    384:o6Lz0OyPaGPbG8FecNrgzbUFPlfRNefMfNq8UBTvxKWRzpeancfKykJIyfgS9/VN:o6Lo1RPbPFHRgzwFPlf/efMT6TqI8W

Score
10/10
ginkpersistenceworm

Malware Config

Targets

    • Target

      0971fe5700a6bbf5d8141d588bf770c370a4e003a242d317f67fd6c7a0827dd4

    • Size

      34KB

    • MD5

      5fa1367d1793e42432e0db4ac00e6cf4

    • SHA1

      79d8504456b883eed9ddc59c96c67c4a4a4e8f1a

    • SHA256

      0971fe5700a6bbf5d8141d588bf770c370a4e003a242d317f67fd6c7a0827dd4

    • SHA512

      8c80cd3f0f8fc333d30717cfa0c6bfb9dbd8b84cf5da3bf66b7afe7303182990988288f2673f2c1d8fb2188a649ce4ad8251f04e5da780bab79d91525effbcea

    • SSDEEP

      384:o6Lz0OyPaGPbG8FecNrgzbUFPlfRNefMfNq8UBTvxKWRzpeancfKykJIyfgS9/VN:o6Lo1RPbPFHRgzwFPlf/efMT6TqI8W

    Score
    10/10
    ginkpersistenceworm
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks