Overview

overview

8

Static

static

aa94e7ef4f...a4.exe

windows7-x64

8

aa94e7ef4f...a4.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    aa94e7ef4face29effbe2a55c79cce24b5570fe1fce96da1e5640488a56075a4

  • Size

    461KB

  • Sample

    221012-shhkqsgfgl

  • MD5

    635ff47f857e23272a2f684d2407a936

  • SHA1

    4d7094e4d661fca02cb56fa84ca8a1ef86776258

  • SHA256

    aa94e7ef4face29effbe2a55c79cce24b5570fe1fce96da1e5640488a56075a4

  • SHA512

    936106d0f484c1a2cdcc9f5348aa5067ed4e3925eaeeb8bd1152f06580a55501fc42385127874bfe29bd3dd0cb5a87a98e3365f6f9a914a64eb940128e452d47

  • SSDEEP

    6144:GNMfI4w3Iq1QsH85mZN9wBIthZB/wrOUydnu1yHhSVPbQBZdOXNDzM/DdAUH7jyw:NIQsHe+zZVwrBydu0MPbQqaDQam9Rq

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      aa94e7ef4face29effbe2a55c79cce24b5570fe1fce96da1e5640488a56075a4

    • Size

      461KB

    • MD5

      635ff47f857e23272a2f684d2407a936

    • SHA1

      4d7094e4d661fca02cb56fa84ca8a1ef86776258

    • SHA256

      aa94e7ef4face29effbe2a55c79cce24b5570fe1fce96da1e5640488a56075a4

    • SHA512

      936106d0f484c1a2cdcc9f5348aa5067ed4e3925eaeeb8bd1152f06580a55501fc42385127874bfe29bd3dd0cb5a87a98e3365f6f9a914a64eb940128e452d47

    • SSDEEP

      6144:GNMfI4w3Iq1QsH85mZN9wBIthZB/wrOUydnu1yHhSVPbQBZdOXNDzM/DdAUH7jyw:NIQsHe+zZVwrBydu0MPbQqaDQam9Rq

    Score
    8/10
    persistenceupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Deletes itself

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks