Overview

overview

10

Static

static

3

ce88553dd3...89.exe

windows7-x64

10

ce88553dd3...89.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ce88553dd337a6a2b277499fcf00b6b3ea2b0854f5aeb2620bfdaa8b5e2be589.exe

  • Size

    34KB

  • Sample

    240523-r5b6sseg5v

  • MD5

    572a8f74645196f80d289c67fdb7a400

  • SHA1

    de0f5ed3b8350285b0c281a3f7682e7677583282

  • SHA256

    ce88553dd337a6a2b277499fcf00b6b3ea2b0854f5aeb2620bfdaa8b5e2be589

  • SHA512

    5f02f5ab986991a0bbf1ffdaa39acb824df023d7185e2239ca5fcd713ae55a7779a03978a3bb1dbc7c5d1f5f92e2f69187cbdea5ba9feeb40aff22d10f860c62

  • SSDEEP

    384:U6Lz0OyPaGPbG8FecNrgzbUFPlfRNefMfNq8UTCKWRzpeancfKykJIyfgS9/V+iy:U6Lo1RPbPFHRgzwFPlf/efMTTdI8W

Score
10/10
ginkpersistenceworm

Malware Config

Targets

    • Target

      ce88553dd337a6a2b277499fcf00b6b3ea2b0854f5aeb2620bfdaa8b5e2be589.exe

    • Size

      34KB

    • MD5

      572a8f74645196f80d289c67fdb7a400

    • SHA1

      de0f5ed3b8350285b0c281a3f7682e7677583282

    • SHA256

      ce88553dd337a6a2b277499fcf00b6b3ea2b0854f5aeb2620bfdaa8b5e2be589

    • SHA512

      5f02f5ab986991a0bbf1ffdaa39acb824df023d7185e2239ca5fcd713ae55a7779a03978a3bb1dbc7c5d1f5f92e2f69187cbdea5ba9feeb40aff22d10f860c62

    • SSDEEP

      384:U6Lz0OyPaGPbG8FecNrgzbUFPlfRNefMfNq8UTCKWRzpeancfKykJIyfgS9/V+iy:U6Lo1RPbPFHRgzwFPlf/efMTTdI8W

    Score
    10/10
    ginkpersistenceworm
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks