Overview

overview

9

Static

static

3

5fa6593b9c...bc.exe

windows7-x64

9

5fa6593b9c...bc.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5fa6593b9ce38a6e8f6ece7badd4ff0e7e1ecc77a03a8f645a7fb7ef4902b1bc

  • Size

    5.7MB

  • Sample

    240701-faesnawgkf

  • MD5

    3d323d1ed35e5637d412a2bacff5918a

  • SHA1

    429fa83cde3f306db9b10c1dfbb6f3bca6795d9d

  • SHA256

    5fa6593b9ce38a6e8f6ece7badd4ff0e7e1ecc77a03a8f645a7fb7ef4902b1bc

  • SHA512

    7218f3b3a9456bef0ad66d315afa47241b67fd9bd77daada629dbc78879172e7d2904406cc6ba7b8493eebe5af1045ddafc019962a5b830a1723bf9c711d3774

  • SSDEEP

    98304:b/6n94bDY2EBcBuq62V///4nAWakrn7S/IhWoaVVfs/VIsMF4JD8iulhq7NmYkVI:uMD+cpvJ/4H3nmghWoa/fsysMF4JD85I

Score
9/10
evasion

Malware Config

Targets

    • Target

      5fa6593b9ce38a6e8f6ece7badd4ff0e7e1ecc77a03a8f645a7fb7ef4902b1bc

    • Size

      5.7MB

    • MD5

      3d323d1ed35e5637d412a2bacff5918a

    • SHA1

      429fa83cde3f306db9b10c1dfbb6f3bca6795d9d

    • SHA256

      5fa6593b9ce38a6e8f6ece7badd4ff0e7e1ecc77a03a8f645a7fb7ef4902b1bc

    • SHA512

      7218f3b3a9456bef0ad66d315afa47241b67fd9bd77daada629dbc78879172e7d2904406cc6ba7b8493eebe5af1045ddafc019962a5b830a1723bf9c711d3774

    • SSDEEP

      98304:b/6n94bDY2EBcBuq62V///4nAWakrn7S/IhWoaVVfs/VIsMF4JD8iulhq7NmYkVI:uMD+cpvJ/4H3nmghWoa/fsysMF4JD85I

    Score
    9/10
    evasion

    • Looks for VirtualBox Guest Additions in registry

      evasion
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

1
T1497

Credential Access

Discovery

Query Registry

1
T1012

Virtualization/Sandbox Evasion

1
T1497

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks