b98ec7bbea5d13aa9720b2c6bf3148a080ab3ac63876d8d0eed56f88f95ea73d | Triage

Submit
Reports

Overview

overview

Static

static

b98ec7bbea...3d.exe

windows7-x64

9

b98ec7bbea...3d.exe

windows10-2004-x64

9

Sharing

General

Target

b98ec7bbea5d13aa9720b2c6bf3148a080ab3ac63876d8d0eed56f88f95ea73d
Size

501KB
Sample

240524-cxhahsaa4z
MD5

70e86cb3ebf353a1b6369c8ab8b429a8
SHA1

9e251b94787143b8349c31d13a291d0e2fdf7fc7
SHA256

b98ec7bbea5d13aa9720b2c6bf3148a080ab3ac63876d8d0eed56f88f95ea73d
SHA512

e5f6c40bf05e845578855eb7bf0dd70b2e6a8ffc3e29656d97c3afad2f2d2eb2ed0bced13c1bcd0afda476233211cb9cf2f2b90012487efa867d362ea8ea5571
SSDEEP

6144:wlj7cMnI+c78n5Qw0tneDA/sqhleIc0HftDrkYY1hj63hgDonsogCh6NEpAF8:wlbI+285bM3npxYfj63hgD1Ziz

Score

10^/10

persistence

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

b98ec7bbea5d13aa9720b2c6bf3148a080ab3ac63876d8d0eed56f88f95ea73d.exe

Resource

win7-20240215-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

b98ec7bbea5d13aa9720b2c6bf3148a080ab3ac63876d8d0eed56f88f95ea73d.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  b98ec7bbea5d13aa9720b2c6bf3148a080ab3ac63876d8d0eed56f88f95ea73d
- Size
  
  501KB
- MD5
  
  70e86cb3ebf353a1b6369c8ab8b429a8
- SHA1
  
  9e251b94787143b8349c31d13a291d0e2fdf7fc7
- SHA256
  
  b98ec7bbea5d13aa9720b2c6bf3148a080ab3ac63876d8d0eed56f88f95ea73d
- SHA512
  
  e5f6c40bf05e845578855eb7bf0dd70b2e6a8ffc3e29656d97c3afad2f2d2eb2ed0bced13c1bcd0afda476233211cb9cf2f2b90012487efa867d362ea8ea5571
- SSDEEP
  
  6144:wlj7cMnI+c78n5Qw0tneDA/sqhleIc0HftDrkYY1hj63hgDonsogCh6NEpAF8:wlbI+285bM3npxYfj63hgD1Ziz
Score

9^/10

persistence
- UPX dump on OEP (original entry point)
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy