Overview

overview

8

Static

static

8

1fdbbafb6e...91.exe

windows7-x64

8

1fdbbafb6e...91.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1fdbbafb6e0fd038db86fada619e36b056952a2e852c63a6f8c030a8e18b4091

  • Size

    35KB

  • Sample

    221019-s3qrvaeddp

  • MD5

    a1d3f9a352a44eb0f6f6cec9a357dcd0

  • SHA1

    a03d27547d45a5e79719d6d00d6c58e3fdd815bb

  • SHA256

    1fdbbafb6e0fd038db86fada619e36b056952a2e852c63a6f8c030a8e18b4091

  • SHA512

    4060d3def6269b71f62f20bee5779e8cf5188afe366d2c56b5268c3774a493d192d10d7ee842fadb5bde949417a3860f5550531a0fc36e04cd30819d9398d863

  • SSDEEP

    768:OWMRMO8nnF1Yt/ybUZkFPd8wpS9hucD5+KwqrrwZc:OL8nM5ybQ/4YhT3wqo+

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      1fdbbafb6e0fd038db86fada619e36b056952a2e852c63a6f8c030a8e18b4091

    • Size

      35KB

    • MD5

      a1d3f9a352a44eb0f6f6cec9a357dcd0

    • SHA1

      a03d27547d45a5e79719d6d00d6c58e3fdd815bb

    • SHA256

      1fdbbafb6e0fd038db86fada619e36b056952a2e852c63a6f8c030a8e18b4091

    • SHA512

      4060d3def6269b71f62f20bee5779e8cf5188afe366d2c56b5268c3774a493d192d10d7ee842fadb5bde949417a3860f5550531a0fc36e04cd30819d9398d863

    • SSDEEP

      768:OWMRMO8nnF1Yt/ybUZkFPd8wpS9hucD5+KwqrrwZc:OL8nM5ybQ/4YhT3wqo+

    Score
    8/10
    persistenceupx

    • Adds policy Run key to start application

      persistence

    • Sets service image path in registry

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks