Overview

overview

7

Static

static

3

9b2e59478e...ad.exe

windows7-x64

7

9b2e59478e...ad.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9b2e59478ea4738cc23cdba5d1b9111c636410661a7a4592c35144de94b8c8ad.exe

  • Size

    19.2MB

  • Sample

    240913-bzk9hsxenc

  • MD5

    f1c717609dd44f9e2c979fd9a0f4315c

  • SHA1

    efcca65af18339bc8954c12a486f0a0828a981fa

  • SHA256

    9b2e59478ea4738cc23cdba5d1b9111c636410661a7a4592c35144de94b8c8ad

  • SHA512

    9dabafadb586444a0a8cc47c8d07c1b8a0f353d8e1aaf91cfe849bd15082ee417bb1688659fdea07be5d0a0bb8582ad1680b566884b7d980d1ef182ecfcfc709

  • SSDEEP

    196608:rQ1jHTLbCANqFw3BWc3OnVTA9SnkH/GnXWxfJRjMJIO065bJWfVaTQHa1B:rQ1H3RcSBWc3OnVFkeXWBQh333Q61B

Score
7/10
discovery

Malware Config

Targets

    • Target

      9b2e59478ea4738cc23cdba5d1b9111c636410661a7a4592c35144de94b8c8ad.exe

    • Size

      19.2MB

    • MD5

      f1c717609dd44f9e2c979fd9a0f4315c

    • SHA1

      efcca65af18339bc8954c12a486f0a0828a981fa

    • SHA256

      9b2e59478ea4738cc23cdba5d1b9111c636410661a7a4592c35144de94b8c8ad

    • SHA512

      9dabafadb586444a0a8cc47c8d07c1b8a0f353d8e1aaf91cfe849bd15082ee417bb1688659fdea07be5d0a0bb8582ad1680b566884b7d980d1ef182ecfcfc709

    • SSDEEP

      196608:rQ1jHTLbCANqFw3BWc3OnVTA9SnkH/GnXWxfJRjMJIO065bJWfVaTQHa1B:rQ1H3RcSBWc3OnVFkeXWBQh333Q61B

    Score
    7/10
    discovery

    • Drops startup file

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks