Overview

overview

7

Static

static

3

58a01c825f...db.exe

windows7-x64

7

58a01c825f...db.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    58a01c825fb4b7abd45822762455b657002550e9042c91ea6088596718be42db

  • Size

    76KB

  • Sample

    240524-dmg3faba79

  • MD5

    72ced1586ccb3abfd173cfb4a3dc81d8

  • SHA1

    b1e364b04480a13ca04df88107afc46cc23b9822

  • SHA256

    58a01c825fb4b7abd45822762455b657002550e9042c91ea6088596718be42db

  • SHA512

    fdcb4c3506311fc4f7bf1f14c223040852b9ecde4a0ad60f5f03702de86b267214ee3099c029a7d65255c3a0bb0a169c35ce4182afad5ad463d9467b1bc31b95

  • SSDEEP

    1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO8at:GhfxHNIreQm+HiDat

Score
7/10
persistence

Malware Config

Targets

    • Target

      58a01c825fb4b7abd45822762455b657002550e9042c91ea6088596718be42db

    • Size

      76KB

    • MD5

      72ced1586ccb3abfd173cfb4a3dc81d8

    • SHA1

      b1e364b04480a13ca04df88107afc46cc23b9822

    • SHA256

      58a01c825fb4b7abd45822762455b657002550e9042c91ea6088596718be42db

    • SHA512

      fdcb4c3506311fc4f7bf1f14c223040852b9ecde4a0ad60f5f03702de86b267214ee3099c029a7d65255c3a0bb0a169c35ce4182afad5ad463d9467b1bc31b95

    • SSDEEP

      1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWO8at:GhfxHNIreQm+HiDat

    Score
    7/10
    persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Event Triggered Execution

1
T1546

Change Default File Association

1
T1546.001

Privilege Escalation

Event Triggered Execution

1
T1546

Change Default File Association

1
T1546.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks