Overview

overview

5

task1

 

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0657e82d590c8ad796cf12612bf7a22d399868a9d800fa8f8ac4c1cb67cec1ae

  • Size

    178KB

  • Sample

    191212-94j2st1lqe

  • MD5

    c28ddfdce477332e508751ea5b46e0cc

  • SHA1

    d398ff0b4af088f3359698b0cca157620b3d63f8

  • SHA256

    0657e82d590c8ad796cf12612bf7a22d399868a9d800fa8f8ac4c1cb67cec1ae

  • SHA512

    2174ff02c1fe99c729d40dfd3189a48530c3a55dbd466babd52a832c0718676104e3963111fde6a3ce3f8f71fb2afbb86bd434452aa52ae244abb24f149bb852

Score
5/10

Malware Config

Extracted

Language
ps1
Source
URLs
exe.dropper

http://theaustinochuks.com/personal_array/kvrmif/
exe.dropper

http://sarafifallahi.com/wp-admin/uUXtpLhI/
exe.dropper

http://faustosarli.com/wp-admin/mYZW0/
exe.dropper

http://janejahan.com/wp-content/hqiw1u9/
exe.dropper

http://vikstory.ca/h/f2cgRvw/

Targets

    • Target

      0657e82d590c8ad796cf12612bf7a22d399868a9d800fa8f8ac4c1cb67cec1ae

    • Size

      178KB

    • MD5

      c28ddfdce477332e508751ea5b46e0cc

    • SHA1

      d398ff0b4af088f3359698b0cca157620b3d63f8

    • SHA256

      0657e82d590c8ad796cf12612bf7a22d399868a9d800fa8f8ac4c1cb67cec1ae

    • SHA512

      2174ff02c1fe99c729d40dfd3189a48530c3a55dbd466babd52a832c0718676104e3963111fde6a3ce3f8f71fb2afbb86bd434452aa52ae244abb24f149bb852

    Score
    5/10

    • Checks system information in the registry

      System information is often read in order to detect sandboxing environments.

    task1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

3
T1012

System Information Discovery

3
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks