Overview

overview

7

Static

static

3

716cac9e75...a8.exe

windows7-x64

7

716cac9e75...a8.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    716cac9e75b8dcf36afe59724420d81f52ccb363346769d93ec7eeeb14ddbba8.exe

  • Size

    396KB

  • Sample

    240523-b9dbnahc9t

  • MD5

    1c4ce184213ebdd5094ed966afc6fae0

  • SHA1

    41c1c7d31dca1455232cf126c8c52894f0b7563f

  • SHA256

    716cac9e75b8dcf36afe59724420d81f52ccb363346769d93ec7eeeb14ddbba8

  • SHA512

    bbe7b01c9b402d086ffa524b69404f7293d3f2a08f7d649d6bc9bab5556531da376778adb8fcbbea408703d31a6515f3100d13c924eba0113068bd1ee5fa89d2

  • SSDEEP

    6144:4jlYKRF/LReWAsUyJq5r3PWSAR0DkNVn0bcmF:4jauDReWeFPa90b

Score
7/10
persistence

Malware Config

Targets

    • Target

      716cac9e75b8dcf36afe59724420d81f52ccb363346769d93ec7eeeb14ddbba8.exe

    • Size

      396KB

    • MD5

      1c4ce184213ebdd5094ed966afc6fae0

    • SHA1

      41c1c7d31dca1455232cf126c8c52894f0b7563f

    • SHA256

      716cac9e75b8dcf36afe59724420d81f52ccb363346769d93ec7eeeb14ddbba8

    • SHA512

      bbe7b01c9b402d086ffa524b69404f7293d3f2a08f7d649d6bc9bab5556531da376778adb8fcbbea408703d31a6515f3100d13c924eba0113068bd1ee5fa89d2

    • SSDEEP

      6144:4jlYKRF/LReWAsUyJq5r3PWSAR0DkNVn0bcmF:4jauDReWeFPa90b

    Score
    7/10
    persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks