Overview

overview

10

Static

static

3

f34739136d...5c.exe

windows7-x64

10

f34739136d...5c.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f34739136dee0a87ad206b61d354d4b02d8373fb5906c4e77563ba25d658c75c

  • Size

    80KB

  • Sample

    240701-e7j8zazcnn

  • MD5

    6d1e8a11fc916d817a5760a34e103f5e

  • SHA1

    7970ea129236dbba33835dcf05836b55e77a6231

  • SHA256

    f34739136dee0a87ad206b61d354d4b02d8373fb5906c4e77563ba25d658c75c

  • SHA512

    01d7e6c87285870704e9dafa7aed68d13b6f945e68bee8a3cf694c2a559424664a4512ec6f770d0b729a76ab5383fc65c1a5c2d141974998b6d1cd7764394771

  • SSDEEP

    1536:WPH3tA3/k/sUQDRcVA82LwnaIZTJ+7LhkiB0:8O3/fUQPsaMU7ui

Score
10/10
persistence

Malware Config

Targets

    • Target

      f34739136dee0a87ad206b61d354d4b02d8373fb5906c4e77563ba25d658c75c

    • Size

      80KB

    • MD5

      6d1e8a11fc916d817a5760a34e103f5e

    • SHA1

      7970ea129236dbba33835dcf05836b55e77a6231

    • SHA256

      f34739136dee0a87ad206b61d354d4b02d8373fb5906c4e77563ba25d658c75c

    • SHA512

      01d7e6c87285870704e9dafa7aed68d13b6f945e68bee8a3cf694c2a559424664a4512ec6f770d0b729a76ab5383fc65c1a5c2d141974998b6d1cd7764394771

    • SSDEEP

      1536:WPH3tA3/k/sUQDRcVA82LwnaIZTJ+7LhkiB0:8O3/fUQPsaMU7ui

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks