Overview

overview

9

Static

static

3

40f1acb19b...fb.exe

windows7-x64

9

40f1acb19b...fb.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    40f1acb19b0b73560142a6924d4c5e31a53ef284ed92ecf8133b9174320e52fb

  • Size

    2.4MB

  • Sample

    240627-zrxjkszhjc

  • MD5

    8274d564cfe76ee9e82fca4ec5132134

  • SHA1

    796d6be60f49fa22944bf5499f3648965e3bf323

  • SHA256

    40f1acb19b0b73560142a6924d4c5e31a53ef284ed92ecf8133b9174320e52fb

  • SHA512

    27b37f4b321c5704def5a2f8ac54a7375dba07baef6c450cb279a70d0405af14c657e063e97cdcc8ca07f852dc43645cd7225bcb8af0191a628c4b32ee7ac119

  • SSDEEP

    49152:mm/cJ/XjKoC3m/g7grNZbNsm+kwjI4TT86lorVlyR0Wx:f+fW32nNZZshK4n86WrWDx

Score
9/10

Malware Config

Targets

    • Target

      40f1acb19b0b73560142a6924d4c5e31a53ef284ed92ecf8133b9174320e52fb

    • Size

      2.4MB

    • MD5

      8274d564cfe76ee9e82fca4ec5132134

    • SHA1

      796d6be60f49fa22944bf5499f3648965e3bf323

    • SHA256

      40f1acb19b0b73560142a6924d4c5e31a53ef284ed92ecf8133b9174320e52fb

    • SHA512

      27b37f4b321c5704def5a2f8ac54a7375dba07baef6c450cb279a70d0405af14c657e063e97cdcc8ca07f852dc43645cd7225bcb8af0191a628c4b32ee7ac119

    • SSDEEP

      49152:mm/cJ/XjKoC3m/g7grNZbNsm+kwjI4TT86lorVlyR0Wx:f+fW32nNZZshK4n86WrWDx

    Score
    9/10

    • Detects executables (downlaoders) containing URLs to raw contents of a paste

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks