Overview

overview

8

Static

static

wmac.exe

windows7_x64

8

wmac.exe

windows10_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    wmac.exe

  • Size

    1.7MB

  • Sample

    210507-96ywl8wskx

  • MD5

    a5f82322016f49755fc66a0864dc93f2

  • SHA1

    bef74ae1aea3329ad85a4d8e20f669709168f433

  • SHA256

    fa0dc33a3de4aef67a0a81cde65289d008650d56ec8b837a81762156824d4eef

  • SHA512

    23162d522c21eaa112aed62e7a82883a9d8996dbfd9b51efc3fabb6d4e6f748587f4abdf71b7f3a21982e2eb44c30f76be1f7755f20445633822ba3a7fb965ea

Score
8/10
upx

Malware Config

Targets

    • Target

      wmac.exe

    • Size

      1.7MB

    • MD5

      a5f82322016f49755fc66a0864dc93f2

    • SHA1

      bef74ae1aea3329ad85a4d8e20f669709168f433

    • SHA256

      fa0dc33a3de4aef67a0a81cde65289d008650d56ec8b837a81762156824d4eef

    • SHA512

      23162d522c21eaa112aed62e7a82883a9d8996dbfd9b51efc3fabb6d4e6f748587f4abdf71b7f3a21982e2eb44c30f76be1f7755f20445633822ba3a7fb965ea

    Score
    8/10
    upx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks