Overview

overview

8

Static

static

ca9b139731...29.exe

windows7_x64

8

ca9b139731...29.exe

windows10_x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ca9b1397310d3cbe5af8773585cbfd29.exe

  • Size

    215KB

  • Sample

    200630-mxk6yl9k8j

  • MD5

    ca9b1397310d3cbe5af8773585cbfd29

  • SHA1

    e4c75367993918616d558dcf5ddab4f544dd49c9

  • SHA256

    fbd01daf6f9541d648c04572779da9203855c18fe20fb333f7b5ed18206abc22

  • SHA512

    d5181670089668e8b03d7eda6aa2e5d38e19b7150eb41b441153f22e4d5718795a781f7fcb2ece9bfefa32eaff43f1b478c792acd87bd461506b7353b61e4c8a

Score
8/10

Malware Config

Targets

    • Target

      ca9b1397310d3cbe5af8773585cbfd29.exe

    • Size

      215KB

    • MD5

      ca9b1397310d3cbe5af8773585cbfd29

    • SHA1

      e4c75367993918616d558dcf5ddab4f544dd49c9

    • SHA256

      fbd01daf6f9541d648c04572779da9203855c18fe20fb333f7b5ed18206abc22

    • SHA512

      d5181670089668e8b03d7eda6aa2e5d38e19b7150eb41b441153f22e4d5718795a781f7fcb2ece9bfefa32eaff43f1b478c792acd87bd461506b7353b61e4c8a

    Score
    8/10

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks