Overview

overview

9

Static

static

8

readme.htm... .scr

windows7_x64

9

readme.htm... .scr

windows10-2004_x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    15feb08d472a2e99b9c60f464c3fafb38a43cc4b5e388a7d74329349c737b6b3

  • Size

    22KB

  • Sample

    220609-fy1d9saba2

  • MD5

    67fecdc6f9d309a254e8ad32b1e63a16

  • SHA1

    966d711ce4495bd784c014aa87a6bb9034125a8a

  • SHA256

    15feb08d472a2e99b9c60f464c3fafb38a43cc4b5e388a7d74329349c737b6b3

  • SHA512

    1e200a23696ffb3489c2ed22f10d2b7a0a8b584dee52c206fc2f6ab9976bdc2a2691661bf23a7dc31b5b4522a9ca1905b02784fce7a79731d146218a2334e488

Score
9/10
upx

Malware Config

Targets

    • Target

      readme.htm .scr

    • Size

      22KB

    • MD5

      53df39092394741514bc050f3d6a06a9

    • SHA1

      f91a4d7ac276b8e8b7ae41c22587c89a39ddcea5

    • SHA256

      fff0ccf5feaf5d46b295f770ad398b6d572909b00e2b8bcd1b1c286c70cd9151

    • SHA512

      9792017109cf6ffc783e67be2a4361aa2c0792a359718434fec53e83feed6a9a2f0f331e9951f798e7fb89421fdc1ac0e083527c3d3b6dd71b7fdd90836023a0

    Score
    9/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks