Overview

overview

10

Static

static

8

d458d3046f...1a.exe

windows7-x64

10

d458d3046f...1a.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    d458d3046fb7b856e851b3b48d04c586c92ad0c1cd2c8cd7104457cafe68761a

  • Size

    62KB

  • Sample

    220918-252rkaaaer

  • MD5

    cd86f72b7229362fd13a62f358390cd6

  • SHA1

    117c833ab0bfe11c68548ff450aee359af83178d

  • SHA256

    d458d3046fb7b856e851b3b48d04c586c92ad0c1cd2c8cd7104457cafe68761a

  • SHA512

    ce5de4cd8aa9b8ff9439ade82d0b2b44ed7f40e5d9d6bcc7a1c78f92ecbbac2fb5c55d697402021313860da68913d3e05667017b458f90fffbbdcd9647321e96

  • SSDEEP

    1536:yeN7zFy3KH9ntwviVWexfGHYaLbvWRfsz0Chz:dhzU+mviVWefG4UDsf6vp

Score
10/10
persistenceupx

Malware Config

Targets

    • Target

      d458d3046fb7b856e851b3b48d04c586c92ad0c1cd2c8cd7104457cafe68761a

    • Size

      62KB

    • MD5

      cd86f72b7229362fd13a62f358390cd6

    • SHA1

      117c833ab0bfe11c68548ff450aee359af83178d

    • SHA256

      d458d3046fb7b856e851b3b48d04c586c92ad0c1cd2c8cd7104457cafe68761a

    • SHA512

      ce5de4cd8aa9b8ff9439ade82d0b2b44ed7f40e5d9d6bcc7a1c78f92ecbbac2fb5c55d697402021313860da68913d3e05667017b458f90fffbbdcd9647321e96

    • SSDEEP

      1536:yeN7zFy3KH9ntwviVWexfGHYaLbvWRfsz0Chz:dhzU+mviVWefG4UDsf6vp

    Score
    10/10
    persistenceupx

    • Modifies WinLogon for persistence

      persistence

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Deletes itself

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks