Overview

overview

10

Static

static

10

60836b093d...6a.exe

windows7-x64

6

60836b093d...6a.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    60836b093d85302c1fc856c6c5d79bc923a2e05d3dc8d04bff7014880720ef6a.exe

  • Size

    1.8MB

  • Sample

    250116-xct4sstlfs

  • MD5

    1b0ff0b04ade28a8d2a94d8d839a04bf

  • SHA1

    26d71b8a39707e541eb447ee97117219300a45a0

  • SHA256

    60836b093d85302c1fc856c6c5d79bc923a2e05d3dc8d04bff7014880720ef6a

  • SHA512

    98bd07b038d887f8f1aebd44708237d84262401a2777e56ca819ee4b8da22d0d7d159f87f674e020bc8424a2ba643fa29f2be960b7f70f9cdb29782deb2dc83b

  • SSDEEP

    12288:BUrjP8Xuc2UY0B8TIwDDMistJ6gicRzubSFJeOgTpBA7W2FeDSIGVH/KIDgDgUeM:ujjSYIUDJ86giGTPQDbGV6eH81k4

Score
10/10
warzoneratdiscoverypersistencerat

Malware Config

Targets

    • Target

      60836b093d85302c1fc856c6c5d79bc923a2e05d3dc8d04bff7014880720ef6a.exe

    • Size

      1.8MB

    • MD5

      1b0ff0b04ade28a8d2a94d8d839a04bf

    • SHA1

      26d71b8a39707e541eb447ee97117219300a45a0

    • SHA256

      60836b093d85302c1fc856c6c5d79bc923a2e05d3dc8d04bff7014880720ef6a

    • SHA512

      98bd07b038d887f8f1aebd44708237d84262401a2777e56ca819ee4b8da22d0d7d159f87f674e020bc8424a2ba643fa29f2be960b7f70f9cdb29782deb2dc83b

    • SSDEEP

      12288:BUrjP8Xuc2UY0B8TIwDDMistJ6gicRzubSFJeOgTpBA7W2FeDSIGVH/KIDgDgUeM:ujjSYIUDJ86giGTPQDbGV6eH81k4

    Score
    6/10
    discoverypersistence

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks