hxxp://www[.]dentistrytoday[.]com | Triage

Submit
Reports

Overview

overview

8

Static

static

1

URLScan

urlscan

1

http://www.dentistry...

windows11-21h2-x64

8

Resubmissions

14/06/2024, 20:25

240614-y7qwasvbqb 1

14/06/2024, 20:24

240614-y6qtxaybqm 1

14/06/2024, 20:22

240614-y5qshsybmk 1

14/06/2024, 19:07

240614-xsw84asepf 8

Sharing

General

Target

http://www.dentistrytoday.com
Sample

240614-xsw84asepf

Score

8^/10

execution persistence

Static task

static1

URLScan task

urlscan1

Behavioral task

behavioral1

Sample

http://www.dentistrytoday.com

Resource

win11-20240611-en

execution persistence

windows11-21h2-x64

25 signatures

600 seconds

Malware Config

Targets

- Target
  
  http://www.dentistrytoday.com
Score

8^/10

execution persistence
- Blocklisted process makes network request
- Drops file in Drivers directory
- Sets service image path in registry
  persistence
- Executes dropped EXE
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

urlscan1

behavioral1

executionpersistence

© 2018-2025

Terms | Privacy