Overview

overview

8

Static

static

8

c319143dde...cb.exe

windows7-x64

8

c319143dde...cb.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    c319143ddec6a15ad920cf216dee262ce3f2b8cfbe8d3d49fbfc5b928f3a77cb

  • Size

    133KB

  • Sample

    221030-jr7fsabcck

  • MD5

    a26dace927c4f2c237124d7ca3113590

  • SHA1

    5860cceb800ba77c81709ec9a8d44fdbad44e1f8

  • SHA256

    c319143ddec6a15ad920cf216dee262ce3f2b8cfbe8d3d49fbfc5b928f3a77cb

  • SHA512

    2601855306709934f47daa3022e00785c3516fe798ce5ac0940f22221342747c1dcc6afd173d23af589e65b8617fab8b0322f080eb34b43d5f2141d3a39072df

  • SSDEEP

    3072:u0v4Yb2eruGgAaeXWhTj+fe6ja3GmoT4d8y8HafOafaqcIJLCY2:Jvrb22uGLbWhTjYe6TTmZRzSqpO

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      c319143ddec6a15ad920cf216dee262ce3f2b8cfbe8d3d49fbfc5b928f3a77cb

    • Size

      133KB

    • MD5

      a26dace927c4f2c237124d7ca3113590

    • SHA1

      5860cceb800ba77c81709ec9a8d44fdbad44e1f8

    • SHA256

      c319143ddec6a15ad920cf216dee262ce3f2b8cfbe8d3d49fbfc5b928f3a77cb

    • SHA512

      2601855306709934f47daa3022e00785c3516fe798ce5ac0940f22221342747c1dcc6afd173d23af589e65b8617fab8b0322f080eb34b43d5f2141d3a39072df

    • SSDEEP

      3072:u0v4Yb2eruGgAaeXWhTj+fe6ja3GmoT4d8y8HafOafaqcIJLCY2:Jvrb22uGLbWhTjYe6TTmZRzSqpO

    Score
    8/10
    persistenceupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks