Overview

overview

10

Static

static

3

Virus.Hija...4d.exe

windows7-x64

10

Virus.Hija...4d.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Virus.Hijack.ATA_virussign.com_e8f8ba76b595686b187fe9dd873e574d.exe

  • Size

    243KB

  • Sample

    240907-p48ghaxbmr

  • MD5

    e8f8ba76b595686b187fe9dd873e574d

  • SHA1

    fee85ae3299bd41143a3d2828a20ec32745521fa

  • SHA256

    7007214d3a71dd81b25b6b1e8f3b7d35df2bb3f76dda68e6f9b96c908580d901

  • SHA512

    5293a1c51f4f4ba44b6c655bfdf998270b3875a7f538a2f6a94225cff31619837660410a257286a78fa96752e0d07f39ef1420e8e21e1f22bcbca6e412c7f1b6

  • SSDEEP

    6144:/WuENypl/GEZr0WKzwdlU2zlNgwTnAWtlhjQ:uuEoluEZrrl5LhDAalhj

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      Virus.Hijack.ATA_virussign.com_e8f8ba76b595686b187fe9dd873e574d.exe

    • Size

      243KB

    • MD5

      e8f8ba76b595686b187fe9dd873e574d

    • SHA1

      fee85ae3299bd41143a3d2828a20ec32745521fa

    • SHA256

      7007214d3a71dd81b25b6b1e8f3b7d35df2bb3f76dda68e6f9b96c908580d901

    • SHA512

      5293a1c51f4f4ba44b6c655bfdf998270b3875a7f538a2f6a94225cff31619837660410a257286a78fa96752e0d07f39ef1420e8e21e1f22bcbca6e412c7f1b6

    • SSDEEP

      6144:/WuENypl/GEZr0WKzwdlU2zlNgwTnAWtlhjQ:uuEoluEZrrl5LhDAalhj

    Score
    10/10
    discoverypersistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks