Overview

overview

8

Static

static

8

991f416e2e...9a.exe

windows7-x64

8

991f416e2e...9a.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    991f416e2ef9b45df3eb7c5b6a2d2d6e3b08446e97d2285f9e7073d33a511e9a

  • Size

    32KB

  • Sample

    221123-lxp5ssce69

  • MD5

    fbd5ca774c80b9407b78bd5c6856fd11

  • SHA1

    b97d484d2abe716fff0ce88526257ebf6ac629f4

  • SHA256

    991f416e2ef9b45df3eb7c5b6a2d2d6e3b08446e97d2285f9e7073d33a511e9a

  • SHA512

    4cda55906e7ac93f5fdc9e9d1efe26f1639ea79d17222eb92231b5f4c93fdc8fc9cb9c21af9110667c677176bfa70bcd1e16e56ed6b712fcf143454b8efbb033

  • SSDEEP

    768:LIjGFy8mveHt+ozeGlfhJ1GbeP0GIWfqYU:LIGmM+oq0J1GKiWfqYU

Score
8/10
evasionupx

Malware Config

Targets

    • Target

      991f416e2ef9b45df3eb7c5b6a2d2d6e3b08446e97d2285f9e7073d33a511e9a

    • Size

      32KB

    • MD5

      fbd5ca774c80b9407b78bd5c6856fd11

    • SHA1

      b97d484d2abe716fff0ce88526257ebf6ac629f4

    • SHA256

      991f416e2ef9b45df3eb7c5b6a2d2d6e3b08446e97d2285f9e7073d33a511e9a

    • SHA512

      4cda55906e7ac93f5fdc9e9d1efe26f1639ea79d17222eb92231b5f4c93fdc8fc9cb9c21af9110667c677176bfa70bcd1e16e56ed6b712fcf143454b8efbb033

    • SSDEEP

      768:LIjGFy8mveHt+ozeGlfhJ1GbeP0GIWfqYU:LIGmM+oq0J1GKiWfqYU

    Score
    8/10
    evasionupx

    • Stops running service(s)

      evasion

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Deletes itself

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

1
T1031

Privilege Escalation

Defense Evasion

Impair Defenses

1
T1562

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Service Stop

1
T1489

Tasks