Overview

overview

10

Static

static

10

2bd6cc2321...ca.exe

windows7-x64

6

2bd6cc2321...ca.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2bd6cc2321b5f09c3b8dbbe2441d8403285f93434996d4a0ccf1a43444bf6aca.exe

  • Size

    1.8MB

  • Sample

    250126-zxhbvatmbt

  • MD5

    70a08edbbe7a1a9e70066bb740d5ddc1

  • SHA1

    15050d512c1ec9bf0829d944ff198cedb49709ab

  • SHA256

    2bd6cc2321b5f09c3b8dbbe2441d8403285f93434996d4a0ccf1a43444bf6aca

  • SHA512

    5a1334cd92bd1e45d4e9dac3c6bb0efc024ae9a35eba2aec6d23156685a6892f108ee1b060b93fcfd192d783366b226f36fd91e01709a2f6f4d557be0928c22b

  • SSDEEP

    12288:i254f/VAuj79umm3xR0lq+X6kOyeXiYxewRJBWW59qA7W2FeDSIGVH/KIDgDgUe5:x+D9uVMpjOyerrFQDbGV6eH81kV

Score
10/10
warzoneratdiscoverypersistencerat

Malware Config

Targets

    • Target

      2bd6cc2321b5f09c3b8dbbe2441d8403285f93434996d4a0ccf1a43444bf6aca.exe

    • Size

      1.8MB

    • MD5

      70a08edbbe7a1a9e70066bb740d5ddc1

    • SHA1

      15050d512c1ec9bf0829d944ff198cedb49709ab

    • SHA256

      2bd6cc2321b5f09c3b8dbbe2441d8403285f93434996d4a0ccf1a43444bf6aca

    • SHA512

      5a1334cd92bd1e45d4e9dac3c6bb0efc024ae9a35eba2aec6d23156685a6892f108ee1b060b93fcfd192d783366b226f36fd91e01709a2f6f4d557be0928c22b

    • SSDEEP

      12288:i254f/VAuj79umm3xR0lq+X6kOyeXiYxewRJBWW59qA7W2FeDSIGVH/KIDgDgUe5:x+D9uVMpjOyerrFQDbGV6eH81kV

    Score
    6/10
    discoverypersistence

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks