Overview

overview

8

Static

static

8

7674168400...72.exe

windows7-x64

8

7674168400...72.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    767416840053b8f2f1fe455b33af106730a2f9b7bcd5d87f242ff1764ab0bd72

  • Size

    20KB

  • Sample

    221003-j7n95segd2

  • MD5

    64d484c3e02043785fa99412f43802f0

  • SHA1

    18ba08b19d179521841c60178e35fe097ca2eb9c

  • SHA256

    767416840053b8f2f1fe455b33af106730a2f9b7bcd5d87f242ff1764ab0bd72

  • SHA512

    d2abb71f0ba1aeaf36d90fc362c3436b3521fe84d5ee67d721bf889136bcaededc26d5db2a5f5a593f0ce428867d7eb7e52b7b82e51493d4ca6a4b623ba18596

  • SSDEEP

    384:c93q7m/006fdmo4SKOpsviAysG+FpWKvAYtMal:2q7h06BTKOpK5y/+FpWeAYB

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      767416840053b8f2f1fe455b33af106730a2f9b7bcd5d87f242ff1764ab0bd72

    • Size

      20KB

    • MD5

      64d484c3e02043785fa99412f43802f0

    • SHA1

      18ba08b19d179521841c60178e35fe097ca2eb9c

    • SHA256

      767416840053b8f2f1fe455b33af106730a2f9b7bcd5d87f242ff1764ab0bd72

    • SHA512

      d2abb71f0ba1aeaf36d90fc362c3436b3521fe84d5ee67d721bf889136bcaededc26d5db2a5f5a593f0ce428867d7eb7e52b7b82e51493d4ca6a4b623ba18596

    • SSDEEP

      384:c93q7m/006fdmo4SKOpsviAysG+FpWKvAYtMal:2q7h06BTKOpK5y/+FpWeAYB

    Score
    8/10
    persistenceupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Deletes itself

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks