Overview

overview

8

Static

static

1b7e905ae1...df.exe

windows7-x64

8

1b7e905ae1...df.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    1b7e905ae110f438f7f69cd9f37c2968bcbf41ff45d0a65fd5b95826be8a8fdf

  • Size

    239KB

  • Sample

    221004-cx838shbf3

  • MD5

    046178d98c923246189b5abcab3e4228

  • SHA1

    bddcfec804f8d38d1a452608dc7a9c28497764b7

  • SHA256

    1b7e905ae110f438f7f69cd9f37c2968bcbf41ff45d0a65fd5b95826be8a8fdf

  • SHA512

    f13cdb5294d18c3c0bb086d3e18128c6188faffe27a481bcc4088d14b4062c54ffdf6a8c6eecd954c1cd1331a090f9e5cd71533b48c8e45a5c04a354bd6a5b79

  • SSDEEP

    6144:nE27JtMFyYqmdBwaA7Rwdic5lyv1UO7nWJxQwvMog4:nE27JywAwF1wdY9jnW/X

Score
8/10
evasionpersistenceupx

Malware Config

Targets

    • Target

      1b7e905ae110f438f7f69cd9f37c2968bcbf41ff45d0a65fd5b95826be8a8fdf

    • Size

      239KB

    • MD5

      046178d98c923246189b5abcab3e4228

    • SHA1

      bddcfec804f8d38d1a452608dc7a9c28497764b7

    • SHA256

      1b7e905ae110f438f7f69cd9f37c2968bcbf41ff45d0a65fd5b95826be8a8fdf

    • SHA512

      f13cdb5294d18c3c0bb086d3e18128c6188faffe27a481bcc4088d14b4062c54ffdf6a8c6eecd954c1cd1331a090f9e5cd71533b48c8e45a5c04a354bd6a5b79

    • SSDEEP

      6144:nE27JtMFyYqmdBwaA7Rwdic5lyv1UO7nWJxQwvMog4:nE27JywAwF1wdY9jnW/X

    Score
    8/10
    evasionpersistenceupx

    • Disables taskbar notifications via registry modification

      evasion

    • Executes dropped EXE

    • Modifies Installed Components in the registry

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Deletes itself

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks