Overview

overview

8

Static

static

8

6ac34ba805...4d.exe

windows7-x64

8

6ac34ba805...4d.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    6ac34ba8052b4901361e1137e01bd37884f96096f7680845db3296f3cae5374d

  • Size

    1.1MB

  • Sample

    220919-d7bfdsafaj

  • MD5

    0a7f241ab20ed20fb980c53a4668a520

  • SHA1

    209f96b863cb863fe8bafd67d6e576c97ad84a61

  • SHA256

    6ac34ba8052b4901361e1137e01bd37884f96096f7680845db3296f3cae5374d

  • SHA512

    924f515cf27225ec8d7380518499df6858fa6175684c2e6bdde37eebf5185a3c5c7f01992578c8e6bf6227c8c66a7168ab54f4c1d9f17cbe8f587ec3498d629b

  • SSDEEP

    12288:rbpHYUKy5U1bo9t8DMRSW9vbciUiLuAvOxMt11i27QitjGeyc8I:r5sJo6YrFUiyAak11LtjGeyc8I

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      6ac34ba8052b4901361e1137e01bd37884f96096f7680845db3296f3cae5374d

    • Size

      1.1MB

    • MD5

      0a7f241ab20ed20fb980c53a4668a520

    • SHA1

      209f96b863cb863fe8bafd67d6e576c97ad84a61

    • SHA256

      6ac34ba8052b4901361e1137e01bd37884f96096f7680845db3296f3cae5374d

    • SHA512

      924f515cf27225ec8d7380518499df6858fa6175684c2e6bdde37eebf5185a3c5c7f01992578c8e6bf6227c8c66a7168ab54f4c1d9f17cbe8f587ec3498d629b

    • SSDEEP

      12288:rbpHYUKy5U1bo9t8DMRSW9vbciUiLuAvOxMt11i27QitjGeyc8I:r5sJo6YrFUiyAak11LtjGeyc8I

    Score
    8/10
    persistenceupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks