Overview

overview

8

Static

static

3

em.rar

windows7-x64

3

em.rar

windows10-2004-x64

8

Launcherkks.exe

windows7-x64

1

Launcherkks.exe

windows10-2004-x64

1

Launcherkks.pck

windows7-x64

3

Launcherkks.pck

windows10-2004-x64

3

Resubmissions

13/09/2024, 08:50

240913-krrk1avbln 8

13/09/2024, 08:46

240913-kpfeysvdlb 3

13/09/2024, 08:34

240913-kgtbvavakd 8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    em.rar

  • Size

    17.3MB

  • Sample

    240913-krrk1avbln

  • MD5

    b18017525805b6fea9e5115f0b0c71ce

  • SHA1

    3f14138c59369a0e66ed16cfdefc06e39bb3f59f

  • SHA256

    260f06f0c6c1544afcdd9a380a114489ebdd041b846b68703158e207b7c983d6

  • SHA512

    28a8227a769d89ef6984a374e0498e5d771f37ef29bdacfc68da5f449a4c336fbbac16e5174aff06ecf60a0b29cf5ede4c5883f0f248e996b994ad1ecb1f5cc1

  • SSDEEP

    393216:1M5fWcqpKnHDBQ7jsW3z6Q1wL19Z6YVuFt6Fw0HPOHl1T590MZBxNyRLOb:qBqQnHDB8pYB/6YVuWa0vscMJNyRLOb

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      em.rar

    • Size

      17.3MB

    • MD5

      b18017525805b6fea9e5115f0b0c71ce

    • SHA1

      3f14138c59369a0e66ed16cfdefc06e39bb3f59f

    • SHA256

      260f06f0c6c1544afcdd9a380a114489ebdd041b846b68703158e207b7c983d6

    • SHA512

      28a8227a769d89ef6984a374e0498e5d771f37ef29bdacfc68da5f449a4c336fbbac16e5174aff06ecf60a0b29cf5ede4c5883f0f248e996b994ad1ecb1f5cc1

    • SSDEEP

      393216:1M5fWcqpKnHDBQ7jsW3z6Q1wL19Z6YVuFt6Fw0HPOHl1T590MZBxNyRLOb:qBqQnHDB8pYB/6YVuWa0vscMJNyRLOb

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Downloads MZ/PE file

    • Event Triggered Execution: Component Object Model Hijacking

      Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.

      persistenceprivilege_escalation

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

    • Target

      Launcherkks.exe

    • Size

      69.0MB

    • MD5

      a46b01dbdaabcfc06e80c59c416add9d

    • SHA1

      c377ff1afb9832133c6b12ab36a816bb2644a935

    • SHA256

      3317b8e19e19218e5a7c77a47a76f36e37319f383b314b30179b837e46c87c45

    • SHA512

      8129e4929d9d64c1550b483f6e4ffafff8af1b027c754b8e6c32c87a075ec5d2bb27cc02707d59c3aa8f8a113ab88c86dbc6c8a7ed4aca684db81dbc97b7c034

    • SSDEEP

      393216:LfadLDkgyGXgV6MTsTD9O9UZQQtXcPicpfIe8xwpSv/LnYNBioCQ3PQduudOu13B:2ZXgV9D9UTIv3Qif

    Score
    1/10
    behavioral3behavioral4

    • Target

      Launcherkks.pck

    • Size

      374KB

    • MD5

      629de0818f1ddcad721e870d8a211bdf

    • SHA1

      d251a07f8be2abdd3f5f4032fd820f641f1b9750

    • SHA256

      0d03c7c6335e06c45dd810fba6c52cdb9eafe02111da897696b83811bff0be92

    • SHA512

      e0652bc32229e7cb4fe7f18a45c68d2a43c425982750ca64ba775e39a04cf0a373e231f9b8b7eaf6a281c8492342b6d720901139c970676f57324b38ed7ec7ae

    • SSDEEP

      6144:1mKBG1eY8bMQ8aX7vlqyXTdhmDjmk0iPvsxFHGqhGnyfGD5ro9W3vEuFm8eidH:IKY1eXMQv7NqkHgj07GHn0GLhF

    Score
    3/10
    discovery
    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks