Overview

overview

7

Static

static

3

eface790b3...3b.exe

windows7-x64

7

eface790b3...3b.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    eface790b3a34fa4a326fe72b9df748380c3ae15c8d8bb929b4cb274445b233b

  • Size

    84KB

  • Sample

    240902-gc7rwsthle

  • MD5

    48916c39188d7a1ecd7618b9622d925c

  • SHA1

    5873e40607ae6b6ee543e08ae35bb473a3de06e8

  • SHA256

    eface790b3a34fa4a326fe72b9df748380c3ae15c8d8bb929b4cb274445b233b

  • SHA512

    6fce97f950207a2f6aa3df2e9f19c1aec24aa70010c4995084e34a155ab6a65149d10ff4008ce65afe410ba3b29b367ea8a1e59dbd63ae3e3e3d65461169d0e9

  • SSDEEP

    768:eLxqBt1sJw5pVNUP1/kvtbWcpmCKXakXDlXvqL/OSBw7N4foYGpFdSEL8DhPZZ6q:BteqGDlXvCDB04f5Gn/L8NRel17wefbw

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      eface790b3a34fa4a326fe72b9df748380c3ae15c8d8bb929b4cb274445b233b

    • Size

      84KB

    • MD5

      48916c39188d7a1ecd7618b9622d925c

    • SHA1

      5873e40607ae6b6ee543e08ae35bb473a3de06e8

    • SHA256

      eface790b3a34fa4a326fe72b9df748380c3ae15c8d8bb929b4cb274445b233b

    • SHA512

      6fce97f950207a2f6aa3df2e9f19c1aec24aa70010c4995084e34a155ab6a65149d10ff4008ce65afe410ba3b29b367ea8a1e59dbd63ae3e3e3d65461169d0e9

    • SSDEEP

      768:eLxqBt1sJw5pVNUP1/kvtbWcpmCKXakXDlXvqL/OSBw7N4foYGpFdSEL8DhPZZ6q:BteqGDlXvCDB04f5Gn/L8NRel17wefbw

    Score
    7/10
    discoverypersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies WinLogon

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks