Overview

overview

8

Static

static

3

NetViper.exe

windows10-1703-x64

8

NetViper.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NetViper.exe

  • Size

    23.7MB

  • Sample

    240625-bv2qpswfpj

  • MD5

    eac164a138bab8eeb0abfbb8c7e78eb6

  • SHA1

    cc6c56246c5d738b2667de00d20ffd30d7bf1fa4

  • SHA256

    e1b8260139db5b70df4071798e163f7dbcf271de9f7b3f21b5f6e2c7699e84db

  • SHA512

    cb4141ea77c7c7347782a3c1781bc02829c4cb3ca923f64dc22d73a471bb25401f68d9ac97b2258bcbaba4367871a9b474bafd5ea38385fba133632ba63fd15d

  • SSDEEP

    393216:1AKEggY5F3t/QawGJxE0/DQfFQIa7rQuCfSEISj9PMFvBBJ7exLkN3Vxt8x8L24l:WKTh5wawmb2gwn2FvtxN3j+8dsK4y7

Score
8/10
execution

Malware Config

Targets

    • Target

      NetViper.exe

    • Size

      23.7MB

    • MD5

      eac164a138bab8eeb0abfbb8c7e78eb6

    • SHA1

      cc6c56246c5d738b2667de00d20ffd30d7bf1fa4

    • SHA256

      e1b8260139db5b70df4071798e163f7dbcf271de9f7b3f21b5f6e2c7699e84db

    • SHA512

      cb4141ea77c7c7347782a3c1781bc02829c4cb3ca923f64dc22d73a471bb25401f68d9ac97b2258bcbaba4367871a9b474bafd5ea38385fba133632ba63fd15d

    • SSDEEP

      393216:1AKEggY5F3t/QawGJxE0/DQfFQIa7rQuCfSEISj9PMFvBBJ7exLkN3Vxt8x8L24l:WKTh5wawmb2gwn2FvtxN3j+8dsK4y7

    Score
    8/10
    execution

    • Blocklisted process makes network request

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks