Overview

overview

10

Static

static

3

e3e0b21e41...5a.exe

windows7-x64

10

e3e0b21e41...5a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e3e0b21e41ffb95f19c166a2115f706168a67f2ca5e6b9505f3d9ec13c94165a

  • Size

    470KB

  • Sample

    241122-frcdvsvlhw

  • MD5

    ca479ab5caa15ac6c9e8e1daa88a45ba

  • SHA1

    815cb07ab2418be4fbf2f073f38659567e1b9980

  • SHA256

    e3e0b21e41ffb95f19c166a2115f706168a67f2ca5e6b9505f3d9ec13c94165a

  • SHA512

    034fe5da2458c983b91f4574d3511208241d8dec37725f08f88400ab7684101ebd85ff95dbdc678dd70da3fd438207127efa8d9471c42a9e6199b85ba839853d

  • SSDEEP

    12288:t/Qc8QVj94nLiFzN3b7CUq1u2ztB1XQKTQInqyS6Rm6TIJ3l7DurTG9c8QVj94n8:t4

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      e3e0b21e41ffb95f19c166a2115f706168a67f2ca5e6b9505f3d9ec13c94165a

    • Size

      470KB

    • MD5

      ca479ab5caa15ac6c9e8e1daa88a45ba

    • SHA1

      815cb07ab2418be4fbf2f073f38659567e1b9980

    • SHA256

      e3e0b21e41ffb95f19c166a2115f706168a67f2ca5e6b9505f3d9ec13c94165a

    • SHA512

      034fe5da2458c983b91f4574d3511208241d8dec37725f08f88400ab7684101ebd85ff95dbdc678dd70da3fd438207127efa8d9471c42a9e6199b85ba839853d

    • SSDEEP

      12288:t/Qc8QVj94nLiFzN3b7CUq1u2ztB1XQKTQInqyS6Rm6TIJ3l7DurTG9c8QVj94n8:t4

    Score
    10/10
    discoverypersistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks