Overview

overview

7

Static

static

3

be8e8d8063...99.exe

windows7-x64

7

be8e8d8063...99.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    be8e8d8063da116e9838a5493b80c0f1bfd188e8d41934c426672becc6079a99

  • Size

    6.0MB

  • Sample

    240624-cflxdavbpe

  • MD5

    6d47997c7b35a68b7b71057be8d554e2

  • SHA1

    582c56c4b300bb4cfacf93894a0d8cc0e55db221

  • SHA256

    be8e8d8063da116e9838a5493b80c0f1bfd188e8d41934c426672becc6079a99

  • SHA512

    7ea11617569d9e1c73b3d228d6f1e96e3360e9231672f161acd8710db59c9209840a3a8888399bf60db507e6b2619b29e075c185865f18ce470fa4a0afc1c0be

  • SSDEEP

    49152:w8YBR/kLYjAFjYtalkMyXh/ZMlqFxp73ooGBHI+ruP3A5GhOoT8NXadkMG1hdAKW:xIJpMqnhIHVruP3Ld81hCHC/zZWN

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      be8e8d8063da116e9838a5493b80c0f1bfd188e8d41934c426672becc6079a99

    • Size

      6.0MB

    • MD5

      6d47997c7b35a68b7b71057be8d554e2

    • SHA1

      582c56c4b300bb4cfacf93894a0d8cc0e55db221

    • SHA256

      be8e8d8063da116e9838a5493b80c0f1bfd188e8d41934c426672becc6079a99

    • SHA512

      7ea11617569d9e1c73b3d228d6f1e96e3360e9231672f161acd8710db59c9209840a3a8888399bf60db507e6b2619b29e075c185865f18ce470fa4a0afc1c0be

    • SSDEEP

      49152:w8YBR/kLYjAFjYtalkMyXh/ZMlqFxp73ooGBHI+ruP3A5GhOoT8NXadkMG1hdAKW:xIJpMqnhIHVruP3Ld81hCHC/zZWN

    Score
    7/10
    discoverypersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks