Overview

overview

9

Static

static

WinRAR 5.21.exe

windows7-x64

8

WinRAR 5.21.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    949a56259a1f751d1e6b7b06634e6eb2e0cb07b8354a0fc08dd669504ff550d5

  • Size

    15.1MB

  • Sample

    221029-e3vh5sbhgn

  • MD5

    2d92904c2bf2755d83db13c4c51e4612

  • SHA1

    8b5ed38a7e5c9f7ddd72888611dfd11f6fdcab4a

  • SHA256

    949a56259a1f751d1e6b7b06634e6eb2e0cb07b8354a0fc08dd669504ff550d5

  • SHA512

    8cb0e4538ae6e56370b8151ea8394105b702d131808d059677b8962fddd60b8d1ecf67fc93a73049a373e33b9313564511a6118b6b632a643598483bf0da53ab

  • SSDEEP

    393216:Y0u2iJ9Dxu6k8tju0JGNX6/FeLQfnzK4016J7y2G:E9Ds6JtvwX6rf2CrG

Score
9/10
upx

Malware Config

Targets

    • Target

      WinRAR 5.21.exe

    • Size

      15.1MB

    • MD5

      a406daa55259af9da947856d0e71bae4

    • SHA1

      cd1f6c9cbab31f7a4c59f8eb09b2d6da485a476d

    • SHA256

      d4c254bcc11c260f0f37f187f6465bbb5a3c679b8eb1538b20c80c5d1a9da16f

    • SHA512

      854551cf4f0d893ef2bd6f950505552b5b183898ce8fc5be0d42a230c2b103b737504117fb733982c5bf1b97479953cfcd72a794dd514a85d45559c25646cb5f

    • SSDEEP

      393216:00u2iJ9Dxu6k8tju0JGNX6/FeLQfnzK4016J7y2D:I9Ds6JtvwX6rf2CrD

    Score
    9/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks