Overview

overview

9

Static

static

b7672923b7...1c.exe

windows7-x64

9

b7672923b7...1c.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b7672923b7ae3fa1cb0f7fdbf5ca6ec88ad1cedfe821d3cd10725f5ccce9251c

  • Size

    17.0MB

  • Sample

    221123-nj6azacb3x

  • MD5

    4e40e1fc2f24f336878624c689aa70bb

  • SHA1

    082604da28ecfffd71e9f4167bff5083d5eb763f

  • SHA256

    b7672923b7ae3fa1cb0f7fdbf5ca6ec88ad1cedfe821d3cd10725f5ccce9251c

  • SHA512

    f4d2b4313a9ae2fe93999a3b3ec08731b30efc8aa24fa3d30ae0abd7642fb91429ede0b5c4656586993603561290b1e63b25a58a3ac3284c88b7e98c871fa697

  • SSDEEP

    393216:EOq4pHHd5lVKso0ZxlDXXJGem/6AvV5eMrQ:cslVNnlDpGD/ji5

Score
9/10
upx

Malware Config

Targets

    • Target

      b7672923b7ae3fa1cb0f7fdbf5ca6ec88ad1cedfe821d3cd10725f5ccce9251c

    • Size

      17.0MB

    • MD5

      4e40e1fc2f24f336878624c689aa70bb

    • SHA1

      082604da28ecfffd71e9f4167bff5083d5eb763f

    • SHA256

      b7672923b7ae3fa1cb0f7fdbf5ca6ec88ad1cedfe821d3cd10725f5ccce9251c

    • SHA512

      f4d2b4313a9ae2fe93999a3b3ec08731b30efc8aa24fa3d30ae0abd7642fb91429ede0b5c4656586993603561290b1e63b25a58a3ac3284c88b7e98c871fa697

    • SSDEEP

      393216:EOq4pHHd5lVKso0ZxlDXXJGem/6AvV5eMrQ:cslVNnlDpGD/ji5

    Score
    9/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks