General

  • Target

    8dba90b3c3a6aa0910626ec52d76104895da7591f8b9e04a67392a179f67eb79

  • Size

    15KB

  • Sample

    221016-zc7e8sacaj

  • MD5

    e1307845110562239b94640d08755fbf

  • SHA1

    c6452c0d8a7138f37e1d97bd827c9f0da4a09582

  • SHA256

    8dba90b3c3a6aa0910626ec52d76104895da7591f8b9e04a67392a179f67eb79

  • SHA512

    b298a164acc14cd2a98861ae25005541c166955fdf02fa0ba1ddfcbac4592dd2e4be3df000d3ce23df99b50029c227295814ec26c65fcc47bbc640d99a7c52ee

  • SSDEEP

    384:YXMRDbYNp5T83uXkao2mq+VANj3O8q3Ltln8ka+0PlRcli:l1bYNT83uXka+VANj+3xlnLP0PMl

Score
10/10

Malware Config

Targets

    • Target

      8dba90b3c3a6aa0910626ec52d76104895da7591f8b9e04a67392a179f67eb79

    • Size

      15KB

    • MD5

      e1307845110562239b94640d08755fbf

    • SHA1

      c6452c0d8a7138f37e1d97bd827c9f0da4a09582

    • SHA256

      8dba90b3c3a6aa0910626ec52d76104895da7591f8b9e04a67392a179f67eb79

    • SHA512

      b298a164acc14cd2a98861ae25005541c166955fdf02fa0ba1ddfcbac4592dd2e4be3df000d3ce23df99b50029c227295814ec26c65fcc47bbc640d99a7c52ee

    • SSDEEP

      384:YXMRDbYNp5T83uXkao2mq+VANj3O8q3Ltln8ka+0PlRcli:l1bYNT83uXka+VANj+3xlnLP0PMl

    Score
    10/10
    • UAC bypass

    • Downloads MZ/PE file

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Checks whether UAC is enabled

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v6

Tasks