Overview

overview

10

Static

static

3

0ab7eeccf5...80.exe

windows7-x64

10

0ab7eeccf5...80.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0ab7eeccf59f6ec0f4a2f5a6a5f19b80.bin

  • Size

    46KB

  • Sample

    240530-bgr94shf96

  • MD5

    0ab7eeccf59f6ec0f4a2f5a6a5f19b80

  • SHA1

    b3ba8d156005fa86dbae957ad996f957a1d30e91

  • SHA256

    ed8487815a68edf9acb8e3584acd797b7e24a82c6474b4e695f40d1f0e2bd671

  • SHA512

    8dd78a42850bda40fa9e8cc1d878acf2424965d4fbff091c64c99fe9c865dbbcb1cdfab598db33943cbf2bd9f1d274b09e6ec084a96c140ac76ca179ee3f5774

  • SSDEEP

    768:WAUJmQCcmLCXQq6fsKiJYsIkjJVzqsVG5kuGVAQvBucNs2pB:RUNHFKQbIkHvGkAOd/

Score
10/10
evasionpersistencetrojan

Malware Config

Targets

    • Target

      0ab7eeccf59f6ec0f4a2f5a6a5f19b80.bin

    • Size

      46KB

    • MD5

      0ab7eeccf59f6ec0f4a2f5a6a5f19b80

    • SHA1

      b3ba8d156005fa86dbae957ad996f957a1d30e91

    • SHA256

      ed8487815a68edf9acb8e3584acd797b7e24a82c6474b4e695f40d1f0e2bd671

    • SHA512

      8dd78a42850bda40fa9e8cc1d878acf2424965d4fbff091c64c99fe9c865dbbcb1cdfab598db33943cbf2bd9f1d274b09e6ec084a96c140ac76ca179ee3f5774

    • SSDEEP

      768:WAUJmQCcmLCXQq6fsKiJYsIkjJVzqsVG5kuGVAQvBucNs2pB:RUNHFKQbIkHvGkAOd/

    Score
    10/10
    evasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Drops file in Drivers directory

    • Modifies Installed Components in the registry

      persistence

    • Sets file execution options in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Modifies WinLogon

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks