Overview

overview

8

Static

static

3

271aa013b7...bc.exe

windows7-x64

8

271aa013b7...bc.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    271aa013b7689e38eb76cead1f94936c13f0c528980b09b3450ee4e72f457cbc

  • Size

    80KB

  • Sample

    241031-j8zr9swlfr

  • MD5

    73e91b1ab6d5a198be59978c1d8a4e78

  • SHA1

    c5b2d5036fc1531ed367cdff3f6c1feab1e72feb

  • SHA256

    271aa013b7689e38eb76cead1f94936c13f0c528980b09b3450ee4e72f457cbc

  • SHA512

    18bce3147e442b9655ec875cecf763081aae4e60c65642c8f53c884fd244553a4284163d05eabe353a660883a2231b647a21d1bc3381276a914bd619a226dab8

  • SSDEEP

    768:78QXvyTFpHrP/58ByHA/oEraNsNHPkUfb+uTld9woHBX4QXsFwAbF1PGCwwtIa:BKFF358KAAErO4PrquZwor/4+Cf6

Score
8/10
discoverypersistence

Malware Config

Targets

    • Target

      271aa013b7689e38eb76cead1f94936c13f0c528980b09b3450ee4e72f457cbc

    • Size

      80KB

    • MD5

      73e91b1ab6d5a198be59978c1d8a4e78

    • SHA1

      c5b2d5036fc1531ed367cdff3f6c1feab1e72feb

    • SHA256

      271aa013b7689e38eb76cead1f94936c13f0c528980b09b3450ee4e72f457cbc

    • SHA512

      18bce3147e442b9655ec875cecf763081aae4e60c65642c8f53c884fd244553a4284163d05eabe353a660883a2231b647a21d1bc3381276a914bd619a226dab8

    • SSDEEP

      768:78QXvyTFpHrP/58ByHA/oEraNsNHPkUfb+uTld9woHBX4QXsFwAbF1PGCwwtIa:BKFF358KAAErO4PrquZwor/4+Cf6

    Score
    8/10
    discoverypersistence

    • Boot or Logon Autostart Execution: Active Setup

      Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.

      persistence

    • Drops file in Drivers directory

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks