Overview

overview

10

Static

static

3

85263b94c3...cd.exe

windows7-x64

10

85263b94c3...cd.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    85263b94c3f4f5407f9ae83c60df08e6a821c96a787dec3730347ca411f07fcd

  • Size

    37KB

  • Sample

    240528-alc6bafd4y

  • MD5

    4ffb349d8c071a8030be513665ee2369

  • SHA1

    e50a871ea4b379cc69afa209728e5e2e52987e73

  • SHA256

    85263b94c3f4f5407f9ae83c60df08e6a821c96a787dec3730347ca411f07fcd

  • SHA512

    8b7077bf094e3837a0f18bc53eba8d6a5f71cefb8cb9f7838f5ff779691c3ba74fe8e1a522f403c88eef51d1931700aeef24458ee46512c80261521a4bffe253

  • SSDEEP

    384:GYf8a5yxZMr1YlLzC6rDbamOot7kQLkMR5m24/Nf4g+nI8di:G7jZ7VdamOC7k+kMW2GYI8U

Score
10/10
ginkpersistenceworm

Malware Config

Targets

    • Target

      85263b94c3f4f5407f9ae83c60df08e6a821c96a787dec3730347ca411f07fcd

    • Size

      37KB

    • MD5

      4ffb349d8c071a8030be513665ee2369

    • SHA1

      e50a871ea4b379cc69afa209728e5e2e52987e73

    • SHA256

      85263b94c3f4f5407f9ae83c60df08e6a821c96a787dec3730347ca411f07fcd

    • SHA512

      8b7077bf094e3837a0f18bc53eba8d6a5f71cefb8cb9f7838f5ff779691c3ba74fe8e1a522f403c88eef51d1931700aeef24458ee46512c80261521a4bffe253

    • SSDEEP

      384:GYf8a5yxZMr1YlLzC6rDbamOot7kQLkMR5m24/Nf4g+nI8di:G7jZ7VdamOC7k+kMW2GYI8U

    Score
    10/10
    ginkpersistenceworm
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks