Overview

overview

8

Static

static

unzip.exe

windows7-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    unzip.exe

  • Size

    256KB

  • Sample

    220822-14c65sdghl

  • MD5

    1853b48b655d5bd0a34791a93da8647c

  • SHA1

    bfb30a9a08612be1a772fba531cf885bb8cf48aa

  • SHA256

    281651b91568f18d3aca7c28d4f1b0f5220673736afb41a00c268cac2355bfc3

  • SHA512

    d6c2828e68ec7c283d0fc2333445535a2563b47864779c4558fb818546527f4d2ec56c6e9da2dee407e0e70ce73b5185fdb33d7e478d2e31ef6c3c65d4cda5c7

  • SSDEEP

    6144:rIp9tUxrLgADUMpdQ86bN1VDbbP7V2YH/OlPqsQuOq:rxr3PPchXbP70U/OlPqjq

Score
8/10
dave

Malware Config

Targets

    • Target

      unzip.exe

    • Size

      256KB

    • MD5

      1853b48b655d5bd0a34791a93da8647c

    • SHA1

      bfb30a9a08612be1a772fba531cf885bb8cf48aa

    • SHA256

      281651b91568f18d3aca7c28d4f1b0f5220673736afb41a00c268cac2355bfc3

    • SHA512

      d6c2828e68ec7c283d0fc2333445535a2563b47864779c4558fb818546527f4d2ec56c6e9da2dee407e0e70ce73b5185fdb33d7e478d2e31ef6c3c65d4cda5c7

    • SSDEEP

      6144:rIp9tUxrLgADUMpdQ86bN1VDbbP7V2YH/OlPqsQuOq:rxr3PPchXbP70U/OlPqjq

    Score
    8/10
    dave

    • Dave packer

      Detects executable using a packer named 'Dave' by the community, based on a string at the end.

      dave

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks