Overview

overview

10

Static

static

10

730f0f4852...eb.exe

windows7-x64

6

730f0f4852...eb.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    730f0f4852ff31031bf53ccf6e2ded40ee354b20f316c082fa94c957e9f98ceb.exe

  • Size

    8.2MB

  • Sample

    241127-xg52vs1rfj

  • MD5

    16f5a0862751c4a02dcb001a275bd844

  • SHA1

    f932d1f74129021175950ad5c56a06947547742a

  • SHA256

    730f0f4852ff31031bf53ccf6e2ded40ee354b20f316c082fa94c957e9f98ceb

  • SHA512

    f5b0d92ee42c39ac2a912da23b051a0a16471824ae5f1069018f0e49298f9c6320ff2dd5f1884c2e6b37b702c44de60b63cd63c8a609743fd5232f76a01812d7

  • SSDEEP

    49152:7C0bNechC0bNechC0bNecIC0bNechC0bNechC0bNecw:V8e8e8f8e8e8x

Score
10/10
warzonerataspackv2discoverypersistencerat

Malware Config

Targets

    • Target

      730f0f4852ff31031bf53ccf6e2ded40ee354b20f316c082fa94c957e9f98ceb.exe

    • Size

      8.2MB

    • MD5

      16f5a0862751c4a02dcb001a275bd844

    • SHA1

      f932d1f74129021175950ad5c56a06947547742a

    • SHA256

      730f0f4852ff31031bf53ccf6e2ded40ee354b20f316c082fa94c957e9f98ceb

    • SHA512

      f5b0d92ee42c39ac2a912da23b051a0a16471824ae5f1069018f0e49298f9c6320ff2dd5f1884c2e6b37b702c44de60b63cd63c8a609743fd5232f76a01812d7

    • SSDEEP

      49152:7C0bNechC0bNechC0bNecIC0bNechC0bNechC0bNecw:V8e8e8f8e8e8x

    Score
    6/10
    discoverypersistence

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks