Overview

overview

10

Static

static

3

dfe130b165...0N.exe

windows7-x64

10

dfe130b165...0N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dfe130b165a1114c01d172c1d0ada760N.exe

  • Size

    790KB

  • Sample

    240823-vrm8pazaqm

  • MD5

    dfe130b165a1114c01d172c1d0ada760

  • SHA1

    2457c5ed105ef4498fdb7339152f496410f700a0

  • SHA256

    6e2bac2258e343b801adc7382d75583e000ecb860f3ed6a1191cce0fafe0fd3e

  • SHA512

    f642a8b16bf1399744624351655a9b90e614a4847d9605f0cb59a0e4cafa8ea311cdda673b03f6b5f30439ff5ab7ee0d8a7e6a5210b9f0f427f1112699cb5a16

  • SSDEEP

    12288:OuG1xFB24lwR45FB24lJ87g7/VycgE81lgxaa79y:MPLPEoIlg17o

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      dfe130b165a1114c01d172c1d0ada760N.exe

    • Size

      790KB

    • MD5

      dfe130b165a1114c01d172c1d0ada760

    • SHA1

      2457c5ed105ef4498fdb7339152f496410f700a0

    • SHA256

      6e2bac2258e343b801adc7382d75583e000ecb860f3ed6a1191cce0fafe0fd3e

    • SHA512

      f642a8b16bf1399744624351655a9b90e614a4847d9605f0cb59a0e4cafa8ea311cdda673b03f6b5f30439ff5ab7ee0d8a7e6a5210b9f0f427f1112699cb5a16

    • SSDEEP

      12288:OuG1xFB24lwR45FB24lJ87g7/VycgE81lgxaa79y:MPLPEoIlg17o

    Score
    10/10
    discoverypersistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks