Overview

overview

7

Static

static

3

Xfer.Recor...CD.exe

windows7-x64

Xfer.Recor...CD.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Xfer.Records.Serum.v1.363-TCD.exe

  • Size

    194.4MB

  • Sample

    240907-j6y3ystfpr

  • MD5

    022bdfff9aae163cdad8a6592d6f875b

  • SHA1

    6e3d3c0d9577f63ad3486301b96da5a078e7998d

  • SHA256

    3c276917a800a8c9ad19b82efe50abb88d6105954a5b99f1b1f2f1e6a6b2fb44

  • SHA512

    9c6fb958f60bcf8d28e1f2162f6126db64756b08b5759838fe9eb175e1132a8bfc7d502100980ba24e32cc9fdab758e33a6b3ec68add092d13d7c4dd7661b727

  • SSDEEP

    3145728:xFouHlx5rcWFlzaNTX8UXQlTQEu1zHZXbob8d4eCHA++JgDSbQ0c0/u/hUVIIng3:xxHP5rhmNB/5obr9AXJkSk00hUmIng44

Score
7/10
discovery

Malware Config

Targets

    • Target

      Xfer.Records.Serum.v1.363-TCD.exe

    • Size

      194.4MB

    • MD5

      022bdfff9aae163cdad8a6592d6f875b

    • SHA1

      6e3d3c0d9577f63ad3486301b96da5a078e7998d

    • SHA256

      3c276917a800a8c9ad19b82efe50abb88d6105954a5b99f1b1f2f1e6a6b2fb44

    • SHA512

      9c6fb958f60bcf8d28e1f2162f6126db64756b08b5759838fe9eb175e1132a8bfc7d502100980ba24e32cc9fdab758e33a6b3ec68add092d13d7c4dd7661b727

    • SSDEEP

      3145728:xFouHlx5rcWFlzaNTX8UXQlTQEu1zHZXbob8d4eCHA++JgDSbQ0c0/u/hUVIIng3:xxHP5rhmNB/5obr9AXJkSk00hUmIng44

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks