Overview

overview

10

Static

static

3

ef51e1cfbb...0N.exe

windows7-x64

10

ef51e1cfbb...0N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ef51e1cfbb1d4768f9071a5311670df0N.exe

  • Size

    60KB

  • Sample

    240822-emsdvaxerf

  • MD5

    ef51e1cfbb1d4768f9071a5311670df0

  • SHA1

    29c1acd8b0e80972a79941f17248cace9cecb454

  • SHA256

    7b5ee47a6ea482e8142bb9aa4bff7e63dedbe045ee234da722a557d332b37b34

  • SHA512

    d9bf1a10c82ef2ba6e897690b918062f0974d64468c1351e855c54705ccd4d5a5bfcb8b3ef696d2a53549af3220fee63838034c73c8935e51c9c7ccfd8c8f84d

  • SSDEEP

    1536:DeaNzAVaov3o1JmT+1jzoRdJlgbVdqKvOMFVCP0NFGr3A3pL6B86l1rs:vWaAM/7Li3A5L6B86l1rs

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      ef51e1cfbb1d4768f9071a5311670df0N.exe

    • Size

      60KB

    • MD5

      ef51e1cfbb1d4768f9071a5311670df0

    • SHA1

      29c1acd8b0e80972a79941f17248cace9cecb454

    • SHA256

      7b5ee47a6ea482e8142bb9aa4bff7e63dedbe045ee234da722a557d332b37b34

    • SHA512

      d9bf1a10c82ef2ba6e897690b918062f0974d64468c1351e855c54705ccd4d5a5bfcb8b3ef696d2a53549af3220fee63838034c73c8935e51c9c7ccfd8c8f84d

    • SSDEEP

      1536:DeaNzAVaov3o1JmT+1jzoRdJlgbVdqKvOMFVCP0NFGr3A3pL6B86l1rs:vWaAM/7Li3A5L6B86l1rs

    Score
    10/10
    discoverypersistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks