Overview

overview

10

Static

static

3

ca490b3756...cf.exe

windows7-x64

10

ca490b3756...cf.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ca490b3756a602fc0cdbaaa7d1ed516c2c49b01b7a5a895b5d5f5cab8008cacf

  • Size

    465KB

  • Sample

    240909-c85vysxgkp

  • MD5

    b11ee6811c473a0551cb54bcdfef8e50

  • SHA1

    c33d9a3bce18191eaf7e428a4aef822948152d93

  • SHA256

    ca490b3756a602fc0cdbaaa7d1ed516c2c49b01b7a5a895b5d5f5cab8008cacf

  • SHA512

    f6f80d9de0c67106c7ba7db1168d98f3bd64be4450d0a45009e66387a1c67a02b019a08e966fcf9d32890e59c88ce8f20897297d17d00f09d5d560bc20ac90b8

  • SSDEEP

    6144:jATAsg0smKDPQ///NR5fKr2n0MO3LPlkUCmVs5bPQ///NR5frdQt383PQ///NR5R:0TAsg0sA/Ng1/Nmr/Ng1/NSf

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      ca490b3756a602fc0cdbaaa7d1ed516c2c49b01b7a5a895b5d5f5cab8008cacf

    • Size

      465KB

    • MD5

      b11ee6811c473a0551cb54bcdfef8e50

    • SHA1

      c33d9a3bce18191eaf7e428a4aef822948152d93

    • SHA256

      ca490b3756a602fc0cdbaaa7d1ed516c2c49b01b7a5a895b5d5f5cab8008cacf

    • SHA512

      f6f80d9de0c67106c7ba7db1168d98f3bd64be4450d0a45009e66387a1c67a02b019a08e966fcf9d32890e59c88ce8f20897297d17d00f09d5d560bc20ac90b8

    • SSDEEP

      6144:jATAsg0smKDPQ///NR5fKr2n0MO3LPlkUCmVs5bPQ///NR5frdQt383PQ///NR5R:0TAsg0sA/Ng1/Nmr/Ng1/NSf

    Score
    10/10
    discoverypersistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks