Overview

overview

7

Static

static

3

7z2408-x64.exe

windows7-x64

7

7z2408-x64.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7z2408-x64.exe

  • Size

    1.5MB

  • Sample

    241121-xhnh7svmav

  • MD5

    0330d0bd7341a9afe5b6d161b1ff4aa1

  • SHA1

    86918e72f2e43c9c664c246e62b41452d662fbf3

  • SHA256

    67cb9d3452c9dd974b04f4a5fd842dbcba8184f2344ff72e3662d7cdb68b099b

  • SHA512

    850382414d9d33eab134f8bd89dc99759f8d0459b7ad48bd9588405a3705aeb2cd727898529e3f71d9776a42e141c717e844e0b5c358818bbeac01d096907ad1

  • SSDEEP

    24576:UEBmEo1y9fcw5K42KmEDaMYAhr08oSG4OdWrfjcaHSNXJdx7wE9iko6qzLJmYYUP:UEvoo24xV2JJdPwMJ3x75z5q0jc/3

Score
7/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      7z2408-x64.exe

    • Size

      1.5MB

    • MD5

      0330d0bd7341a9afe5b6d161b1ff4aa1

    • SHA1

      86918e72f2e43c9c664c246e62b41452d662fbf3

    • SHA256

      67cb9d3452c9dd974b04f4a5fd842dbcba8184f2344ff72e3662d7cdb68b099b

    • SHA512

      850382414d9d33eab134f8bd89dc99759f8d0459b7ad48bd9588405a3705aeb2cd727898529e3f71d9776a42e141c717e844e0b5c358818bbeac01d096907ad1

    • SSDEEP

      24576:UEBmEo1y9fcw5K42KmEDaMYAhr08oSG4OdWrfjcaHSNXJdx7wE9iko6qzLJmYYUP:UEvoo24xV2JJdPwMJ3x75z5q0jc/3

    Score
    7/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: Component Object Model Hijacking

      Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.

      persistenceprivilege_escalation

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks