Overview

overview

8

Static

static

050045738d...3d.exe

windows7-x64

8

050045738d...3d.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    050045738d3edce273ceef5ed1ad60c4bb0b477cfe13666b4843f53d877d0c3d

  • Size

    120KB

  • Sample

    221121-samvgshh9z

  • MD5

    09f65e259fb432517d3f00170fef5576

  • SHA1

    b83a0502c1f468f17287a096c8a80b9c96878ee0

  • SHA256

    050045738d3edce273ceef5ed1ad60c4bb0b477cfe13666b4843f53d877d0c3d

  • SHA512

    ce86a41b19164cada53aac5abf8e1a6caeafe1aa89d7cb2577394688aa3f6451f50a78f98f4a5fecd2d727ae881908f22f26794b5d7b3cf2c1180b1a2d343c66

  • SSDEEP

    1536:QIDThSFWEv7NyArVF3qmRIjbPT6XpOPzmsLPtTh0PE:phSFWETNykFaygbipEzLLPRh0M

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      050045738d3edce273ceef5ed1ad60c4bb0b477cfe13666b4843f53d877d0c3d

    • Size

      120KB

    • MD5

      09f65e259fb432517d3f00170fef5576

    • SHA1

      b83a0502c1f468f17287a096c8a80b9c96878ee0

    • SHA256

      050045738d3edce273ceef5ed1ad60c4bb0b477cfe13666b4843f53d877d0c3d

    • SHA512

      ce86a41b19164cada53aac5abf8e1a6caeafe1aa89d7cb2577394688aa3f6451f50a78f98f4a5fecd2d727ae881908f22f26794b5d7b3cf2c1180b1a2d343c66

    • SSDEEP

      1536:QIDThSFWEv7NyArVF3qmRIjbPT6XpOPzmsLPtTh0PE:phSFWETNykFaygbipEzLLPRh0M

    Score
    8/10
    persistenceupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks