Overview

overview

7

Static

static

3

CPPZ.exe

windows7-x64

1

CPPZ.exe

windows10-2004-x64

3

vc_redist.x86.exe

windows7-x64

7

vc_redist.x86.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Debug.7z

  • Size

    11.8MB

  • Sample

    240829-hnsmsa1amm

  • MD5

    cb19b9ff50740d0ed225d06534c94773

  • SHA1

    687cb259319772d0e555e5a8f7c412cb356e704a

  • SHA256

    b1e6160e3ede292823fc20b310e831ac362f50d39880ffb2fcb60d66b7b702cc

  • SHA512

    1e3c96aa0aae7f2e9b256cb67b8b308c4185bd51c871f1089b1312bb77c44d8ca94281fd2eab7dc88c4687e8fef43dc78da30b9cb9a516800f875bf28cb8938f

  • SSDEEP

    196608:jzhBel5WcnOHWIxvcLxn6FUCa4oZRTmhxEKH301ebUctFBMVEF3fEaBzQ4rhjeLA:jzhcl5XnO3e5yvanZRCvEM018DOEp8aX

Score
7/10
discovery

Malware Config

Targets

    • Target

      CPPZ.exe

    • Size

      89KB

    • MD5

      859f37333f5cb87769ad7bb1726e3b7f

    • SHA1

      e234885f9b4fd8de01f03cccd29643c25c7c035b

    • SHA256

      d07b1b0714eec41d12a2bea2af2e56d1b6ab8f03cb8b79d6885585b4ca8b2a9d

    • SHA512

      83207817414dfde9969558f67338d220c9946d93c45182a0b93d83d16ac396b5080fb4719ff4eae3b20cb4104dba996671d5fa720fac96ac3e5beb41462aa81d

    • SSDEEP

      1536:MARgYEOF2I4LCmxTBHXsnPQIMrwUT+LhObmS:MAmYHQIK1TB8PQnrwUKLh8m

    Score
    3/10
    discovery
    behavioral1behavioral2

    • Target

      vc_redist.x86.exe

    • Size

      13.5MB

    • MD5

      7f5d52f979b732954e87c53dc9720fc0

    • SHA1

      e99e5b17b0ad882833bbdc8cf798dc56f9947a5e

    • SHA256

      ea92c3f93bc063d6da084faa854c131e37f1f2cb585cd1e62a3df9e03eacadff

    • SHA512

      7104b2519c9b0edd4db9b6caf7ad1e4586be6bc64144048df747ff9625196397c249ca1e51562a24e68da863a05c7e0893ed54fd52fb117f60d05bb8b834d512

    • SSDEEP

      393216:gElp+dkBSuF2SfUfn66UyCbr2942cV52S4c9n:9p+Ty2SfUfnsywr0K2tc9n

    Score
    7/10
    discovery

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral3behavioral4

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

2
T1614

System Language Discovery

2
T1614.001

Query Registry

1
T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks