Overview

overview

9

Static

static

4b26d094aa...12.exe

windows7-x64

9

4b26d094aa...12.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4b26d094aaf20f7a50323ed78e7c972cf8a5b1cb18b6177bded1ffce35d44a12

  • Size

    16.3MB

  • Sample

    221123-nksq9scb6x

  • MD5

    b729cc82b46241e58f05c5f5fc18d250

  • SHA1

    8c3f8621444777018bd7c892cfb17eecb3d3e09d

  • SHA256

    4b26d094aaf20f7a50323ed78e7c972cf8a5b1cb18b6177bded1ffce35d44a12

  • SHA512

    b8b7fa1f3b4d364bce1c2eeb8013bbedbe718585f7a23108257f272cc0b0b7539307bc925de988e82187a4dfcb7b0dc9086a7fd03673072b0ac94bce7587c740

  • SSDEEP

    393216:kIfN+XuRnFRsfudoy5ZYWlgYZ8yrYhttcmLZY+:5muRnUfulHG5sYFcmL2+

Score
9/10
upx

Malware Config

Targets

    • Target

      4b26d094aaf20f7a50323ed78e7c972cf8a5b1cb18b6177bded1ffce35d44a12

    • Size

      16.3MB

    • MD5

      b729cc82b46241e58f05c5f5fc18d250

    • SHA1

      8c3f8621444777018bd7c892cfb17eecb3d3e09d

    • SHA256

      4b26d094aaf20f7a50323ed78e7c972cf8a5b1cb18b6177bded1ffce35d44a12

    • SHA512

      b8b7fa1f3b4d364bce1c2eeb8013bbedbe718585f7a23108257f272cc0b0b7539307bc925de988e82187a4dfcb7b0dc9086a7fd03673072b0ac94bce7587c740

    • SSDEEP

      393216:kIfN+XuRnFRsfudoy5ZYWlgYZ8yrYhttcmLZY+:5muRnUfulHG5sYFcmL2+

    Score
    9/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks