Overview

overview

10

Static

static

3

9e2d270f63...90.exe

windows7-x64

10

9e2d270f63...90.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9e2d270f63027b63192ac57aef34fd6906d8bb8d8236fc03ebf38e5b60fa0590

  • Size

    465KB

  • Sample

    240727-bvgqjaxhpq

  • MD5

    07a5bcb417b6e6f3f2caaecae515ba5b

  • SHA1

    9417275a8cf071a97708ea28d53eab4fc50e0d7f

  • SHA256

    9e2d270f63027b63192ac57aef34fd6906d8bb8d8236fc03ebf38e5b60fa0590

  • SHA512

    b9c4c3ea1ca93ed4323609084376ed793b1546e5aa8d2ce6d8dc6a612f48594e92b6d09a55eb57bce4f2023c15959f81d0d4ff7f5786b19b080794d655021584

  • SSDEEP

    6144:Ie0VBuaA/Mu3njPX9ZAkvntd4ljd3rKzwN8Jlljd3njPX9ZAk3fs:IsjP9ZtVkjpKXjtjP9Zt0

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      9e2d270f63027b63192ac57aef34fd6906d8bb8d8236fc03ebf38e5b60fa0590

    • Size

      465KB

    • MD5

      07a5bcb417b6e6f3f2caaecae515ba5b

    • SHA1

      9417275a8cf071a97708ea28d53eab4fc50e0d7f

    • SHA256

      9e2d270f63027b63192ac57aef34fd6906d8bb8d8236fc03ebf38e5b60fa0590

    • SHA512

      b9c4c3ea1ca93ed4323609084376ed793b1546e5aa8d2ce6d8dc6a612f48594e92b6d09a55eb57bce4f2023c15959f81d0d4ff7f5786b19b080794d655021584

    • SSDEEP

      6144:Ie0VBuaA/Mu3njPX9ZAkvntd4ljd3rKzwN8Jlljd3njPX9ZAk3fs:IsjP9ZtVkjpKXjtjP9Zt0

    Score
    10/10
    discoverypersistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Location Discovery

1
T1614

System Language Discovery

1
T1614.001

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks