Overview

overview

7

Static

static

3

549902e079...0N.exe

windows7-x64

7

549902e079...0N.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    549902e079d17a497c98a38e847c6640N.exe

  • Size

    564KB

  • Sample

    240726-cm3hpszdrm

  • MD5

    549902e079d17a497c98a38e847c6640

  • SHA1

    34e9b7da25411f81feca45413542d51698074395

  • SHA256

    6cb7aa9c57662bd10e4af802e526a98461ff08bf2c972bcf04eb56d19be6434b

  • SHA512

    03bf1f1555e950585e3da4533725bb972490c51e5ca443a6fdeb37779a41a465996bffad99355f4852dd63d1b66d49de852096694b92d7a7dde4376c854e734e

  • SSDEEP

    12288:yQyZLRLarjHdREXRYE/gx7kToVElwILK8vdVY/Qyh:gLxandRaRYE/gx7kToWwjj

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      549902e079d17a497c98a38e847c6640N.exe

    • Size

      564KB

    • MD5

      549902e079d17a497c98a38e847c6640

    • SHA1

      34e9b7da25411f81feca45413542d51698074395

    • SHA256

      6cb7aa9c57662bd10e4af802e526a98461ff08bf2c972bcf04eb56d19be6434b

    • SHA512

      03bf1f1555e950585e3da4533725bb972490c51e5ca443a6fdeb37779a41a465996bffad99355f4852dd63d1b66d49de852096694b92d7a7dde4376c854e734e

    • SSDEEP

      12288:yQyZLRLarjHdREXRYE/gx7kToVElwILK8vdVY/Qyh:gLxandRaRYE/gx7kToWwjj

    Score
    7/10
    discoverypersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks