Overview

overview

8

Static

static

8

c6288c4567...0f.exe

windows7-x64

8

c6288c4567...0f.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    c6288c45679bc8a841ad7dc376f226871103f00337da8b0724101d272be77d0f

  • Size

    17KB

  • Sample

    220919-fn4zpshbf5

  • MD5

    1ab9213a28cc161b7d171d98e3b9801d

  • SHA1

    413acab590bbe89cb474d982a043c29e8c93cb8f

  • SHA256

    c6288c45679bc8a841ad7dc376f226871103f00337da8b0724101d272be77d0f

  • SHA512

    d3feddd3799896082ef6aafdf8df3b09b940fb11895da812201f0d42818580a5364897b76a9647f84ddd721c2c59ac772b32a8ce02159b69a508be37ba9dfb5f

  • SSDEEP

    192:U0ssLoIVGmbP8pAzhdUNQS0HOzeMf/UFLEVTo+ObNOJW8JyLgP3/hNiE0yAVy:UeLUNH6ge4VT8bQJyLohNXZAVy

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      c6288c45679bc8a841ad7dc376f226871103f00337da8b0724101d272be77d0f

    • Size

      17KB

    • MD5

      1ab9213a28cc161b7d171d98e3b9801d

    • SHA1

      413acab590bbe89cb474d982a043c29e8c93cb8f

    • SHA256

      c6288c45679bc8a841ad7dc376f226871103f00337da8b0724101d272be77d0f

    • SHA512

      d3feddd3799896082ef6aafdf8df3b09b940fb11895da812201f0d42818580a5364897b76a9647f84ddd721c2c59ac772b32a8ce02159b69a508be37ba9dfb5f

    • SSDEEP

      192:U0ssLoIVGmbP8pAzhdUNQS0HOzeMf/UFLEVTo+ObNOJW8JyLgP3/hNiE0yAVy:UeLUNH6ge4VT8bQJyLohNXZAVy

    Score
    8/10
    persistenceupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks