Overview

overview

8

Static

static

8

eb29956993...85.exe

windows7-x64

8

eb29956993...85.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eb29956993dd3c9a5b398b2d47093b765322ca2fd64afe905c3201efba374185

  • Size

    88KB

  • Sample

    221020-pzgszsecd6

  • MD5

    a05d7826807ac1c13b8dc978bb4c2450

  • SHA1

    3d86b1f9cf2d7377573e1ca9ee622b6a18dd0ff1

  • SHA256

    eb29956993dd3c9a5b398b2d47093b765322ca2fd64afe905c3201efba374185

  • SHA512

    3527b83b5bd1e4885a66a8b85d396eb8ae072d6d8b9581e06494c021ede6173c47a337c7d83432c6f2bbae5ef6200ddade14547bbec22701b19ef51e4e32ff9a

  • SSDEEP

    1536:ivexs6j3J/9liQqErRCFgN1zDJ3okFph/CPTKv:kc7J/90QfGCvJ3oLT8

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      eb29956993dd3c9a5b398b2d47093b765322ca2fd64afe905c3201efba374185

    • Size

      88KB

    • MD5

      a05d7826807ac1c13b8dc978bb4c2450

    • SHA1

      3d86b1f9cf2d7377573e1ca9ee622b6a18dd0ff1

    • SHA256

      eb29956993dd3c9a5b398b2d47093b765322ca2fd64afe905c3201efba374185

    • SHA512

      3527b83b5bd1e4885a66a8b85d396eb8ae072d6d8b9581e06494c021ede6173c47a337c7d83432c6f2bbae5ef6200ddade14547bbec22701b19ef51e4e32ff9a

    • SSDEEP

      1536:ivexs6j3J/9liQqErRCFgN1zDJ3okFph/CPTKv:kc7J/90QfGCvJ3oLT8

    Score
    8/10
    persistenceupx

    • Modifies Installed Components in the registry

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops desktop.ini file(s)

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks