Overview

overview

8

Static

static

800e3ee357...4c.exe

windows7-x64

8

800e3ee357...4c.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    800e3ee3577ab68f8e14a6b9498cc66e2fc7107e22568e7f8c501a2af2f0504c

  • Size

    238KB

  • Sample

    221107-n9r62aeha4

  • MD5

    0d409704c91e5deacf223171ac151ecf

  • SHA1

    b73e480140f12569ab4e711fab9373a9abd2997d

  • SHA256

    800e3ee3577ab68f8e14a6b9498cc66e2fc7107e22568e7f8c501a2af2f0504c

  • SHA512

    18300f35da339d0651740ff6d94d517bd6d18cc583b3a835078019a76841d93d084e9df193f10380e0f5eff0ffef391ea341416abba57c4d61f834ad47a47be0

  • SSDEEP

    6144:JP8Xqjo+np9KpsXmOo0pfqXwL0EL30+EpsPq8mFqjwGOlsM6/:JPKOHn3j/+wjVPnYusi/

Score
8/10
evasionpersistenceupx

Malware Config

Targets

    • Target

      800e3ee3577ab68f8e14a6b9498cc66e2fc7107e22568e7f8c501a2af2f0504c

    • Size

      238KB

    • MD5

      0d409704c91e5deacf223171ac151ecf

    • SHA1

      b73e480140f12569ab4e711fab9373a9abd2997d

    • SHA256

      800e3ee3577ab68f8e14a6b9498cc66e2fc7107e22568e7f8c501a2af2f0504c

    • SHA512

      18300f35da339d0651740ff6d94d517bd6d18cc583b3a835078019a76841d93d084e9df193f10380e0f5eff0ffef391ea341416abba57c4d61f834ad47a47be0

    • SSDEEP

      6144:JP8Xqjo+np9KpsXmOo0pfqXwL0EL30+EpsPq8mFqjwGOlsM6/:JPKOHn3j/+wjVPnYusi/

    Score
    8/10
    evasionpersistenceupx

    • Disables taskbar notifications via registry modification

      evasion

    • Executes dropped EXE

    • Modifies Installed Components in the registry

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Deletes itself

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks