Overview

overview

10

Static

static

3

bebc978509...aN.exe

windows7-x64

10

bebc978509...aN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bebc9785092d93860ad16fc75efc8fed8c719871e333d0932ae5f01db1b84d4aN

  • Size

    384KB

  • Sample

    241023-pkafcszcna

  • MD5

    1c7032e84db2cf714e288552edc243b0

  • SHA1

    862816ee87797e665505075174931b37505ec4fc

  • SHA256

    bebc9785092d93860ad16fc75efc8fed8c719871e333d0932ae5f01db1b84d4a

  • SHA512

    e4b0e2d8c2e18540f0e1ab948dca622a865803b2ac1d4cbe342f04ea5d72d6fdf5412f31d941dfd8f63b6e679e1852d54045997fe3b06f864122791b21f594b7

  • SSDEEP

    6144:G208W03xs4y70u4HXs4yr0u490u4Ds4yvW8C:G2Bm4O0dHc4i0d90dA4D

Score
10/10
bruteratelbackdoordiscoverypersistence

Malware Config

Targets

    • Target

      bebc9785092d93860ad16fc75efc8fed8c719871e333d0932ae5f01db1b84d4aN

    • Size

      384KB

    • MD5

      1c7032e84db2cf714e288552edc243b0

    • SHA1

      862816ee87797e665505075174931b37505ec4fc

    • SHA256

      bebc9785092d93860ad16fc75efc8fed8c719871e333d0932ae5f01db1b84d4a

    • SHA512

      e4b0e2d8c2e18540f0e1ab948dca622a865803b2ac1d4cbe342f04ea5d72d6fdf5412f31d941dfd8f63b6e679e1852d54045997fe3b06f864122791b21f594b7

    • SSDEEP

      6144:G208W03xs4y70u4HXs4yr0u490u4Ds4yvW8C:G2Bm4O0dHc4i0d90dA4D

    Score
    10/10
    discoverypersistencebruteratelbackdoor

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Brute Ratel C4

      A customized command and control framework for red teaming and adversary simulation.

      backdoorbruteratel

    • Detect BruteRatel badger

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks