Overview

overview

9

Static

static

Low-Connect.exe

windows7-x64

9

Low-Connect.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9b5cda9fe198be61cf5034ded3756bbebdcc150e3a5356024031f0cc609e100a

  • Size

    3.7MB

  • Sample

    221123-xsrcvaah51

  • MD5

    7be86b3f3ba614c90882152a4970d709

  • SHA1

    95ee270a4998592b0add09ddb759bc1382ff32e2

  • SHA256

    9b5cda9fe198be61cf5034ded3756bbebdcc150e3a5356024031f0cc609e100a

  • SHA512

    335d861809d68f919744b1f3fd4c65a58a4fda1fd8957a59f9da36c6074cbf8f0833086f059e38744a4ac1951cb792602c0890923f890366a068ac12d3120fab

  • SSDEEP

    98304:slH4fo3SeWMZztMPufkoYGZYjaPj0PsJUKQCDFJSL:YYwLWKmWrY78wU3QcG

Score
9/10
upx

Malware Config

Targets

    • Target

      Low-Connect.exe

    • Size

      4.1MB

    • MD5

      84f0e480b0f6477d4e7f89acdca2006f

    • SHA1

      76c457cff2b170a763edec5cabed051c07623bf4

    • SHA256

      d048373b784617a79c9e64b054f17baaa501b0f4b7fc93fd0b43b0d80928e192

    • SHA512

      fc0ce12867cc35c04809e3eba720e175b8a676e9bbb67c3f373b40f591e66c190a7c9d998022eeb1c5ac961fb08dfeb81ed251855eb1e29743fbe2710d4dfb50

    • SSDEEP

      98304:hcRL4PuPuQtQeVKCRL4PuPuQtQeVKCRL4PuPuQtQeVKv2p:hU0WTQ00WTQ00WTQE

    Score
    9/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks