Overview

overview

10

Static

static

3

fda6d161ee...9b.exe

windows7-x64

10

fda6d161ee...9b.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fda6d161ee2eab7ed5dd1627875d613438f15e4249c4338ebbead16df88fc59b

  • Size

    37KB

  • Sample

    240614-g586essbqp

  • MD5

    25777311a530c455b1e9493c0dc66004

  • SHA1

    894d855ec77894146ca3858c73609fe76a4cccbb

  • SHA256

    fda6d161ee2eab7ed5dd1627875d613438f15e4249c4338ebbead16df88fc59b

  • SHA512

    a55ad378fe34ecf7ee3e1a2879c77fd99661b4cb37d0fa3727c474d368249cfd1282fa3831ea9930d7ed93ece46ebc81ae447bdec06597aa32a76f20bc73fcf9

  • SSDEEP

    768:zsMs6pJ+l9tQwrysoh8LuehzOzxCB/ZB12I8r:zsMt+lpJFLuepOFQB1M

Score
10/10
ginkpersistenceworm

Malware Config

Targets

    • Target

      fda6d161ee2eab7ed5dd1627875d613438f15e4249c4338ebbead16df88fc59b

    • Size

      37KB

    • MD5

      25777311a530c455b1e9493c0dc66004

    • SHA1

      894d855ec77894146ca3858c73609fe76a4cccbb

    • SHA256

      fda6d161ee2eab7ed5dd1627875d613438f15e4249c4338ebbead16df88fc59b

    • SHA512

      a55ad378fe34ecf7ee3e1a2879c77fd99661b4cb37d0fa3727c474d368249cfd1282fa3831ea9930d7ed93ece46ebc81ae447bdec06597aa32a76f20bc73fcf9

    • SSDEEP

      768:zsMs6pJ+l9tQwrysoh8LuehzOzxCB/ZB12I8r:zsMt+lpJFLuepOFQB1M

    Score
    10/10
    ginkpersistenceworm
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks