Overview

overview

8

Static

static

8

062dca3af5...6e.exe

windows7-x64

8

062dca3af5...6e.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    062dca3af533d9a82d994a270f64817ade7fa846e9887ecaeebd7fcab18ecb6e

  • Size

    118KB

  • Sample

    221019-rgbv5abfbn

  • MD5

    9215235d30b7d54c4b407774c91dfda0

  • SHA1

    48c32ea3ce996fce69c9b7b0b2c92a5ac1b304a2

  • SHA256

    062dca3af533d9a82d994a270f64817ade7fa846e9887ecaeebd7fcab18ecb6e

  • SHA512

    a94cbf87a31cd5ee6ad5c35741f2e7d820b4dce358e05bc2fc4e83544b051fb208de537995bfb41e382f8cc648c5f1fe8619162c559754cd3af9832c85c85513

  • SSDEEP

    3072:k811mwREK2sboGcQOsh7ZBi49U5Pl4/FHvGkgSTeJLlXroYov+outkD:k8+zWoGcQxtZ849U5PGpGPJlXU32oS

Score
8/10
microsoftpersistencephishingupx

Malware Config

Targets

    • Target

      062dca3af533d9a82d994a270f64817ade7fa846e9887ecaeebd7fcab18ecb6e

    • Size

      118KB

    • MD5

      9215235d30b7d54c4b407774c91dfda0

    • SHA1

      48c32ea3ce996fce69c9b7b0b2c92a5ac1b304a2

    • SHA256

      062dca3af533d9a82d994a270f64817ade7fa846e9887ecaeebd7fcab18ecb6e

    • SHA512

      a94cbf87a31cd5ee6ad5c35741f2e7d820b4dce358e05bc2fc4e83544b051fb208de537995bfb41e382f8cc648c5f1fe8619162c559754cd3af9832c85c85513

    • SSDEEP

      3072:k811mwREK2sboGcQOsh7ZBi49U5Pl4/FHvGkgSTeJLlXroYov+outkD:k8+zWoGcQxtZ849U5PGpGPJlXU32oS

    Score
    8/10
    upxmicrosoftpersistencephishing

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Detected potential entity reuse from brand microsoft.

      phishingmicrosoft

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks