Overview

overview

9

Static

static

8

93cd2f18e3...66.exe

windows7-x64

9

93cd2f18e3...66.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    93cd2f18e333f1b151fe1f26fd9c466b97f42bfe07a410c8db585e372407ee66

  • Size

    347KB

  • Sample

    221107-nszvjsgdcj

  • MD5

    0db7c761afb8246aaf5d82becd660350

  • SHA1

    d0033257c8578c67af9dcc2978f91a2eb2e6491e

  • SHA256

    93cd2f18e333f1b151fe1f26fd9c466b97f42bfe07a410c8db585e372407ee66

  • SHA512

    0605b981c74b9570ccfd3d6980db1cf16f2a24d1bea0645772d0ae474a00d24cb243b51da8d7f98cdcae8f03cf70338e611e8edb471f76c5f04a3d9804ef9582

  • SSDEEP

    6144:LuIlWqB+ihabs7Ch9KwyF5LeLodp2D1Mmakda0qLcIZYyvbi:y6Wq4aaE6KwyF5L0Y2D1PqLmybi

Score
9/10
persistenceupx

Malware Config

Targets

    • Target

      93cd2f18e333f1b151fe1f26fd9c466b97f42bfe07a410c8db585e372407ee66

    • Size

      347KB

    • MD5

      0db7c761afb8246aaf5d82becd660350

    • SHA1

      d0033257c8578c67af9dcc2978f91a2eb2e6491e

    • SHA256

      93cd2f18e333f1b151fe1f26fd9c466b97f42bfe07a410c8db585e372407ee66

    • SHA512

      0605b981c74b9570ccfd3d6980db1cf16f2a24d1bea0645772d0ae474a00d24cb243b51da8d7f98cdcae8f03cf70338e611e8edb471f76c5f04a3d9804ef9582

    • SSDEEP

      6144:LuIlWqB+ihabs7Ch9KwyF5LeLodp2D1Mmakda0qLcIZYyvbi:y6Wq4aaE6KwyF5L0Y2D1PqLmybi

    Score
    9/10
    persistenceupx

    • Grants admin privileges

      Uses net.exe to modify the user's privileges.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Modifies WinLogon

      persistence

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks