Overview

overview

10

Static

static

8

8015a15479...fb.exe

windows7-x64

10

8015a15479...fb.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    8015a154794ccca706ab8d90de1c81e9bb961a0fece8cd06ab60a23983c0c0fb

  • Size

    234KB

  • Sample

    221106-ergsxabhg7

  • MD5

    0955d735981876cbd7332d4877195223

  • SHA1

    ce4a395cedf70ccc9a226014d4a5e94f60c18596

  • SHA256

    8015a154794ccca706ab8d90de1c81e9bb961a0fece8cd06ab60a23983c0c0fb

  • SHA512

    c27880788b606697c2574f578a7096e0a21367090dccad77899156d1cb71ca4b24609d3b835d7703e63d26335efefb3bd7a8e677854a893a208d01bd61c7e8f9

  • SSDEEP

    6144:2xV8dI3bxRETtXaz/OJepymej5viyT5O/q9DUGEyoSZ:2n8dI3b7ETtKKepymejF5aeDUGNoSZ

Score
10/10
evasionupx

Malware Config

Targets

    • Target

      8015a154794ccca706ab8d90de1c81e9bb961a0fece8cd06ab60a23983c0c0fb

    • Size

      234KB

    • MD5

      0955d735981876cbd7332d4877195223

    • SHA1

      ce4a395cedf70ccc9a226014d4a5e94f60c18596

    • SHA256

      8015a154794ccca706ab8d90de1c81e9bb961a0fece8cd06ab60a23983c0c0fb

    • SHA512

      c27880788b606697c2574f578a7096e0a21367090dccad77899156d1cb71ca4b24609d3b835d7703e63d26335efefb3bd7a8e677854a893a208d01bd61c7e8f9

    • SSDEEP

      6144:2xV8dI3bxRETtXaz/OJepymej5viyT5O/q9DUGEyoSZ:2n8dI3b7ETtKKepymejF5aeDUGNoSZ

    Score
    10/10
    evasionupx

    • Modifies firewall policy service

      evasion

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks