Overview

overview

10

Static

static

8

d4bb593da4...9d.exe

windows7-x64

8

d4bb593da4...9d.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d4bb593da4f4f4ea69a5443203dc06afd720b861915d124fcf4db83bca6bbf9d

  • Size

    134KB

  • Sample

    221123-xvcmgaba6x

  • MD5

    2b0d2bd3f7671ce51634270c5c51dfa7

  • SHA1

    2578688f8548cd533bf23baf932f272b7b06ec2e

  • SHA256

    d4bb593da4f4f4ea69a5443203dc06afd720b861915d124fcf4db83bca6bbf9d

  • SHA512

    20d4f6b8eff2a05537ec38ccb68df81064afc0791d2336c63c33f37d71bd88a8e9ed7be48d7bbc2a2483c089b0eacd51ac8038ae06cda11fc2f69a72a50f6f91

  • SSDEEP

    3072:ZYGoQzoTYd3bYMSReVJd3uCFkvH5OEeO3YxNC:FzoybmeVJISUiOW

Score
10/10
evasionupx

Malware Config

Targets

    • Target

      d4bb593da4f4f4ea69a5443203dc06afd720b861915d124fcf4db83bca6bbf9d

    • Size

      134KB

    • MD5

      2b0d2bd3f7671ce51634270c5c51dfa7

    • SHA1

      2578688f8548cd533bf23baf932f272b7b06ec2e

    • SHA256

      d4bb593da4f4f4ea69a5443203dc06afd720b861915d124fcf4db83bca6bbf9d

    • SHA512

      20d4f6b8eff2a05537ec38ccb68df81064afc0791d2336c63c33f37d71bd88a8e9ed7be48d7bbc2a2483c089b0eacd51ac8038ae06cda11fc2f69a72a50f6f91

    • SSDEEP

      3072:ZYGoQzoTYd3bYMSReVJd3uCFkvH5OEeO3YxNC:FzoybmeVJISUiOW

    Score
    10/10
    upxevasion

    • Modifies firewall policy service

      evasion

    • Drops file in Drivers directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks