Overview

overview

10

Static

static

3

9ce9057fef...6b.exe

windows7-x64

7

9ce9057fef...6b.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    aef178762ba9f72b9b4515f1772e80b6.bin

  • Size

    30.8MB

  • Sample

    241122-bypwba1pdt

  • MD5

    81cb787853b8a321ec165e76e51c00e4

  • SHA1

    88b2d8ebcb8ae9037a314c4f56403ae972a61e01

  • SHA256

    8f0a0e37503ab91f4223309b1849e2d12a330480060c809c033b2e2f18b9f42c

  • SHA512

    d7a59146368ad5b4a67dc6282e4bb552bcf21c15a13667a275954e15d7f8d9c298f51cc32243ff20b6dfd6dc65ab8b5a5641cfe82626e019971c63c47c3698a7

  • SSDEEP

    786432:t1NbEN20Hxby0BCanMBIOMeD/hsTW1ecwD8/Q/s6U+x:3CN20hy0BvnM6xaCWwDNv

Score
10/10
discovery

Malware Config

Targets

    • Target

      9ce9057feff7a9e9c750eae2ab2e50a004e5a7beff471de7b2dc28a41b34bf6b.exe

    • Size

      31.3MB

    • MD5

      aef178762ba9f72b9b4515f1772e80b6

    • SHA1

      6acf797484117a8ff058029a0806c08b82f32954

    • SHA256

      9ce9057feff7a9e9c750eae2ab2e50a004e5a7beff471de7b2dc28a41b34bf6b

    • SHA512

      370ddee9445e2ab6200da24cc73f0ff08db682a9ba18d018c4c98d83aed0f35662fb28524c61f445f61591f52956cd6082c1668b7ca4a232a25ae17809baaa7a

    • SSDEEP

      786432:zO2PsT1ywB80O57/Y8sqa7FV1xX6Oq6UXirV9Md8Ww:zO2PsRywB8j5sAapvxXTamCtw

    Score
    10/10
    discovery

    • Suspicious use of NtCreateUserProcessOtherParentProcess

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks