Overview

overview

10

Static

static

3

e94f935595...c8.exe

windows7-x64

10

e94f935595...c8.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e94f935595145140734aac5723ff48191630aa5fd670cbc4ae07dd339ad91ac8

  • Size

    1.7MB

  • Sample

    240701-eqjwwaygqq

  • MD5

    6a969c67e5df7068ff3be31e80caebcd

  • SHA1

    4d163fd120ee2728bd3a77975f9d49feb1f4172e

  • SHA256

    e94f935595145140734aac5723ff48191630aa5fd670cbc4ae07dd339ad91ac8

  • SHA512

    31a38b19df96445806983a9db9a48b489e726caca7f9a84cac1d6720e9825bc432e26e380c5b0a477fce459be86c7a61fbac47192c1cda94adbbb342984589d4

  • SSDEEP

    49152:lJix7/ix7yix7/ix7Xcix7/ix7yix7/ix7:bU/UyU/UXcU/UyU/U

Score
10/10
persistence

Malware Config

Targets

    • Target

      e94f935595145140734aac5723ff48191630aa5fd670cbc4ae07dd339ad91ac8

    • Size

      1.7MB

    • MD5

      6a969c67e5df7068ff3be31e80caebcd

    • SHA1

      4d163fd120ee2728bd3a77975f9d49feb1f4172e

    • SHA256

      e94f935595145140734aac5723ff48191630aa5fd670cbc4ae07dd339ad91ac8

    • SHA512

      31a38b19df96445806983a9db9a48b489e726caca7f9a84cac1d6720e9825bc432e26e380c5b0a477fce459be86c7a61fbac47192c1cda94adbbb342984589d4

    • SSDEEP

      49152:lJix7/ix7yix7/ix7Xcix7/ix7yix7/ix7:bU/UyU/UXcU/UyU/U

    Score
    10/10
    persistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks