Overview

overview

9

Static

static

3

OikServer_...3).exe

windows10-2004-x64

9

Resubmissions

08-07-2024 12:36

240708-ps6hrs1hkg 9

25-06-2024 10:32

240625-mlb98sxemr 9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    OikServer_v3(2024_05_03).exe

  • Size

    152.4MB

  • Sample

    240708-ps6hrs1hkg

  • MD5

    a86b3fdf34a91eaf0a0d05f935656091

  • SHA1

    42cdbf71f11bc6ec65db4e166f814bc04eaf12fd

  • SHA256

    b27c155b3ce106c9dcfbf32869c49c45d05fa4bba3129522e44ee9189ac3f1ef

  • SHA512

    1adb0b622c03c8824b7359b0f77a2516ea710483a1488cd153daa1d42516bca4d1c15bdc55bf27303fa082a84845b3e0b4d7de1105b733ad55bfd986a51aa06f

  • SSDEEP

    3145728:QhdMcxRrAAdrqMyeFDe0/DWG7hHJp62XpSYR3IFkSOnbf7f5kIk8fDNZOGPDT2Pu:aZrjokDe07R7J6ya185DZrPD3

Score
9/10
cryptonepacker

Malware Config

Targets

    • Target

      OikServer_v3(2024_05_03).exe

    • Size

      152.4MB

    • MD5

      a86b3fdf34a91eaf0a0d05f935656091

    • SHA1

      42cdbf71f11bc6ec65db4e166f814bc04eaf12fd

    • SHA256

      b27c155b3ce106c9dcfbf32869c49c45d05fa4bba3129522e44ee9189ac3f1ef

    • SHA512

      1adb0b622c03c8824b7359b0f77a2516ea710483a1488cd153daa1d42516bca4d1c15bdc55bf27303fa082a84845b3e0b4d7de1105b733ad55bfd986a51aa06f

    • SSDEEP

      3145728:QhdMcxRrAAdrqMyeFDe0/DWG7hHJp62XpSYR3IFkSOnbf7f5kIk8fDNZOGPDT2Pu:aZrjokDe07R7J6ya185DZrPD3

    Score
    9/10
    cryptonepacker

    • CryptOne packer

      Detects CryptOne packer defined in NCC blogpost.

      cryptonepacker

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks