Overview

overview

10

Static

static

3

9bb4c65cbe...bN.exe

windows7-x64

10

9bb4c65cbe...bN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9bb4c65cbe5deb9f1bdbc4721f7fa8c37a84fd98a13a6e7d7546852ea8c371bbN

  • Size

    241KB

  • Sample

    241018-cxz6bs1fph

  • MD5

    3e7d0bcaec04f0c5cc593259abc003b0

  • SHA1

    cfe8b617af0bfc6c8ea12e9d31e0e3dc0bf8ceb7

  • SHA256

    9bb4c65cbe5deb9f1bdbc4721f7fa8c37a84fd98a13a6e7d7546852ea8c371bb

  • SHA512

    0a10c203369bf88a13850863272fab2d753c4225de638c2b99c31a9f69cfe24a21f23f53fd01f0b5a15fe849a4b0a6b53a93b404e2bf0798b1b4cc005d465fb7

  • SSDEEP

    3072:TYf3wRqQxKvxnsRcaCvq36BhgKwuFIH5DjQkr9FiuX1Y94581i2g:cPeyxTvnyKw55nQkxFzKt1/g

Score
10/10
discoveryevasion

Malware Config

Targets

    • Target

      9bb4c65cbe5deb9f1bdbc4721f7fa8c37a84fd98a13a6e7d7546852ea8c371bbN

    • Size

      241KB

    • MD5

      3e7d0bcaec04f0c5cc593259abc003b0

    • SHA1

      cfe8b617af0bfc6c8ea12e9d31e0e3dc0bf8ceb7

    • SHA256

      9bb4c65cbe5deb9f1bdbc4721f7fa8c37a84fd98a13a6e7d7546852ea8c371bb

    • SHA512

      0a10c203369bf88a13850863272fab2d753c4225de638c2b99c31a9f69cfe24a21f23f53fd01f0b5a15fe849a4b0a6b53a93b404e2bf0798b1b4cc005d465fb7

    • SSDEEP

      3072:TYf3wRqQxKvxnsRcaCvq36BhgKwuFIH5DjQkr9FiuX1Y94581i2g:cPeyxTvnyKw55nQkxFzKt1/g

    Score
    10/10
    discoveryevasion

    • Modifies visibility of file extensions in Explorer

      evasion

    • Modifies visiblity of hidden/system files in Explorer

      evasion

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks