Overview

overview

8

Static

static

HEUR-Troja...56.exe

windows7-x64

8

HEUR-Troja...56.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    HEUR-Trojan.Win32.Generic-05e849afaf9291fb32caff88ea535c103660aa028d6d446ab0d2e97af5f7e256.exe

  • Size

    104KB

  • Sample

    220929-ptjemabhbk

  • MD5

    b9c2b68d83fc3b348537e47cacaa7959

  • SHA1

    f2fa509155e277f817aeab2d83c4d9fb3cb8febc

  • SHA256

    05e849afaf9291fb32caff88ea535c103660aa028d6d446ab0d2e97af5f7e256

  • SHA512

    fa65cbbae72fe31156e12b04175b90f1ca4c8055ab383e8f4605404ce699ce0f59fd6a686f4e7787d0cdf3bb712b5b2bdc69f05352e73f2bbc41d6c6b7063f8f

  • SSDEEP

    1536:HbTjlfjhJifmJytUc0vAaas4BCF5TycZ2iBpj6y994oJJC6WYNq7mr9fV7BimynB:7xjF7GsH5emTp4k/WYA7m/imynAa

Score
8/10
upx

Malware Config

Targets

    • Target

      HEUR-Trojan.Win32.Generic-05e849afaf9291fb32caff88ea535c103660aa028d6d446ab0d2e97af5f7e256.exe

    • Size

      104KB

    • MD5

      b9c2b68d83fc3b348537e47cacaa7959

    • SHA1

      f2fa509155e277f817aeab2d83c4d9fb3cb8febc

    • SHA256

      05e849afaf9291fb32caff88ea535c103660aa028d6d446ab0d2e97af5f7e256

    • SHA512

      fa65cbbae72fe31156e12b04175b90f1ca4c8055ab383e8f4605404ce699ce0f59fd6a686f4e7787d0cdf3bb712b5b2bdc69f05352e73f2bbc41d6c6b7063f8f

    • SSDEEP

      1536:HbTjlfjhJifmJytUc0vAaas4BCF5TycZ2iBpj6y994oJJC6WYNq7mr9fV7BimynB:7xjF7GsH5emTp4k/WYA7m/imynAa

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Deletes itself

    • Drops startup file

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks