Overview

overview

10

Static

static

3

Virus.Hija...76.exe

windows7-x64

10

Virus.Hija...76.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Virus.Hijack.ATA_virussign.com_c9c9d4d11d917b02be8364480621f976.exe

  • Size

    136KB

  • Sample

    240907-pq7caavfpd

  • MD5

    c9c9d4d11d917b02be8364480621f976

  • SHA1

    3aa73da1a1a8b5da584ba08690ef34382f2cd1fb

  • SHA256

    0e0b1e5637457255a3be20ea63af0e316f4a01acff8b1eb6f1a5e6302db2dd24

  • SHA512

    9e61310c9fdca0832966d65c7d6fd13d989197b265460cc4fa5ea042661c5e91434e08ad144531185d585313c29ba860f58b0244bc8c44bc9bebef4edbc36ca4

  • SSDEEP

    1536:/7DG2BXikIJHH33qLTKCZg3X8tOQh3T60u9Jjz0cZ44mjD9r823FQ75/DtXh:/7q2wltqLDSstVdkei/mjRrz3OT

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      Virus.Hijack.ATA_virussign.com_c9c9d4d11d917b02be8364480621f976.exe

    • Size

      136KB

    • MD5

      c9c9d4d11d917b02be8364480621f976

    • SHA1

      3aa73da1a1a8b5da584ba08690ef34382f2cd1fb

    • SHA256

      0e0b1e5637457255a3be20ea63af0e316f4a01acff8b1eb6f1a5e6302db2dd24

    • SHA512

      9e61310c9fdca0832966d65c7d6fd13d989197b265460cc4fa5ea042661c5e91434e08ad144531185d585313c29ba860f58b0244bc8c44bc9bebef4edbc36ca4

    • SSDEEP

      1536:/7DG2BXikIJHH33qLTKCZg3X8tOQh3T60u9Jjz0cZ44mjD9r823FQ75/DtXh:/7q2wltqLDSstVdkei/mjRrz3OT

    Score
    10/10
    discoverypersistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks