General

  • Target

    e83fe35b09b2f3a46183273e748b7d269e8e4f313cdb0cacbb9635be9cfb71e8

  • Size

    120KB

  • Sample

    221121-sadxksed84

  • MD5

    1348244c3cd2958b109129818a8c9896

  • SHA1

    ad0e92b25e795fb37568a47fbf5749e119c53220

  • SHA256

    e83fe35b09b2f3a46183273e748b7d269e8e4f313cdb0cacbb9635be9cfb71e8

  • SHA512

    658aa8b6be8be39bbfce335f93221ba5690bb3e2e726f823aaba8773cb3413ed4481fb777a9f7627c36ebc0fe003826840fc33b33dee99afc3b678c381f7216f

  • SSDEEP

    1536:QIDThSFWEv7NyArVF3qmRIjbPT6XpOPzmsLPtTh0PE:phSFWETNykFaygbipEzLLPRh0M

Score
8/10

Malware Config

Targets

    • Target

      e83fe35b09b2f3a46183273e748b7d269e8e4f313cdb0cacbb9635be9cfb71e8

    • Size

      120KB

    • MD5

      1348244c3cd2958b109129818a8c9896

    • SHA1

      ad0e92b25e795fb37568a47fbf5749e119c53220

    • SHA256

      e83fe35b09b2f3a46183273e748b7d269e8e4f313cdb0cacbb9635be9cfb71e8

    • SHA512

      658aa8b6be8be39bbfce335f93221ba5690bb3e2e726f823aaba8773cb3413ed4481fb777a9f7627c36ebc0fe003826840fc33b33dee99afc3b678c381f7216f

    • SSDEEP

      1536:QIDThSFWEv7NyArVF3qmRIjbPT6XpOPzmsLPtTh0PE:phSFWETNykFaygbipEzLLPRh0M

    Score
    8/10
    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks