Overview

overview

7

Static

static

3

main.exe

windows7-x64

7

main.exe

windows10-2004-x64

7

main.js

windows7-x64

3

main.js

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    main.exe

  • Size

    13.6MB

  • Sample

    240726-zg22batcql

  • MD5

    9ab6f9c7d0c58b5635f789f9fd603f04

  • SHA1

    e981d7791c829eb37ae1dbdbc0e1b08559373f00

  • SHA256

    361cead7f8f13617de7ed6e66bd3a5cd0e6e89431e65e6665f43197d977d9de7

  • SHA512

    62bd6ea20ec1c70f4819aa8b40ccce57f27c4718faa3bedc7d0288838dd4da7e9c03137646de013a42100558137adccb2f4c2493f77e15d1b8eb5b35e2f4ead6

  • SSDEEP

    393216:Pl82Rcpd001+TtIiFg0VNRW8E5u6/uYk6pKH+:90d001QtI6NRW8IuxYk+A+

Score
7/10
discoveryexecutionpyinstaller

Malware Config

Targets

    • Target

      main.exe

    • Size

      13.6MB

    • MD5

      9ab6f9c7d0c58b5635f789f9fd603f04

    • SHA1

      e981d7791c829eb37ae1dbdbc0e1b08559373f00

    • SHA256

      361cead7f8f13617de7ed6e66bd3a5cd0e6e89431e65e6665f43197d977d9de7

    • SHA512

      62bd6ea20ec1c70f4819aa8b40ccce57f27c4718faa3bedc7d0288838dd4da7e9c03137646de013a42100558137adccb2f4c2493f77e15d1b8eb5b35e2f4ead6

    • SSDEEP

      393216:Pl82Rcpd001+TtIiFg0VNRW8E5u6/uYk6pKH+:90d001QtI6NRW8IuxYk+A+

    Score
    7/10

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      main.pyc

    • Size

      10KB

    • MD5

      6db1d9c2088fc992e841de715a9a162e

    • SHA1

      8dc7748b9d4d59dca2b8d61d34b78e2cb3fe3455

    • SHA256

      7f083ad549cf5563a6c0d4cbd34e92a8727d42ab76da6ebff587e6367ce721f8

    • SHA512

      aaff61cd929387c3c8c530073ed3ccdc31740dfdf4578c87ba1b57df1e9f1e51b937f60894e456af9c14cd004486e8cc6c06b2b202ecf97335dcd7cbf745cfff

    • SSDEEP

      192:CG/JS7o805i3VVuKI1xRdk7khbq0ywL4sh9zt2mQSD9NFMNbxMd:f/JuoXpKsxRdk7+bvVfh6mDdM5xMd

    Score
    5/10
    executiondiscovery

    • Drops file in System32 directory

    behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks