6680a475582eb69a5bf028ebe5ae4ebd808e5da535336f0b0fe8a7ae6fe77a60 | Triage

Submit
Reports

Overview

overview

Static

static

zeus 1_1.2...ir.exe

windows7_x64

3

zeus 1_1.2...ir.exe

windows10_x64

Sharing

General

Target

zeus 1_1.2.7.21.vir
Size

108KB
Sample

200719-dqkl6ltxyn
MD5

03abab3227f438e805e72e4c8325086a
SHA1

5884b783f31cbfaa7726ce018b23eaa6ba124692
SHA256

6680a475582eb69a5bf028ebe5ae4ebd808e5da535336f0b0fe8a7ae6fe77a60
SHA512

97c0c455c58ec33e52d736749f5b718264d9963009d788c06813b7198b14d0e44f6f34609134992ee0452e1216d69068af3169babb2e98f9e41dab2262322fe6

Score

10^/10

Static task

static1

Behavioral task

behavioral1

Sample

zeus 1_1.2.7.21.vir.exe

Resource

win7

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

zeus 1_1.2.7.21.vir.exe

Resource

win10v200430

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  zeus 1_1.2.7.21.vir
- Size
  
  108KB
- MD5
  
  03abab3227f438e805e72e4c8325086a
- SHA1
  
  5884b783f31cbfaa7726ce018b23eaa6ba124692
- SHA256
  
  6680a475582eb69a5bf028ebe5ae4ebd808e5da535336f0b0fe8a7ae6fe77a60
- SHA512
  
  97c0c455c58ec33e52d736749f5b718264d9963009d788c06813b7198b14d0e44f6f34609134992ee0452e1216d69068af3169babb2e98f9e41dab2262322fe6
Score

10^/10
- Suspicious use of NtCreateProcessExOtherParentProcess
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy