Overview

overview

8

Static

static

3

98908fa12b...fb.exe

windows7-x64

7

98908fa12b...fb.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    98908fa12b74907cc8a392c2ac5cc6ed07fc2df0202d16086fec1c6eb87680fb

  • Size

    468KB

  • Sample

    240919-al32qs1cqk

  • MD5

    c232c4b60d3fdc50302aa2836805bd74

  • SHA1

    fcb49320eb50d1ca4a7562327ca687eecf0c3f50

  • SHA256

    98908fa12b74907cc8a392c2ac5cc6ed07fc2df0202d16086fec1c6eb87680fb

  • SHA512

    da38257e2139ebd0d3987d07a98230220d2376f949467c1fdd815532a1658f802d71cbcfdb43fa034a98e2ad7e676e0c7b823453c92db0317cadd80ae50d2ae1

  • SSDEEP

    3072:TLrCogldI35YB7YKPzcTff8/6CSCpqptJEHhxV80LrFLEd3u31lX:TL+odJYBNP4TffeCE9Lrh43u3

Score
8/10
discoverypersistence

Malware Config

Targets

    • Target

      98908fa12b74907cc8a392c2ac5cc6ed07fc2df0202d16086fec1c6eb87680fb

    • Size

      468KB

    • MD5

      c232c4b60d3fdc50302aa2836805bd74

    • SHA1

      fcb49320eb50d1ca4a7562327ca687eecf0c3f50

    • SHA256

      98908fa12b74907cc8a392c2ac5cc6ed07fc2df0202d16086fec1c6eb87680fb

    • SHA512

      da38257e2139ebd0d3987d07a98230220d2376f949467c1fdd815532a1658f802d71cbcfdb43fa034a98e2ad7e676e0c7b823453c92db0317cadd80ae50d2ae1

    • SSDEEP

      3072:TLrCogldI35YB7YKPzcTff8/6CSCpqptJEHhxV80LrFLEd3u31lX:TL+odJYBNP4TffeCE9Lrh43u3

    Score
    8/10
    discoverypersistence

    • Boot or Logon Autostart Execution: Active Setup

      Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks