Overview

overview

10

Static

static

8

22f67fb2a7...fc.exe

windows7-x64

10

22f67fb2a7...fc.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    22f67fb2a795b7199f3a47546679d40000706680de825354bfe88411b33a11fc

  • Size

    252KB

  • Sample

    221124-egwjbaag51

  • MD5

    198f3ce376661393baece0f351d18db0

  • SHA1

    09ed61b47822867797881ed0abdf0ed5e62e7027

  • SHA256

    22f67fb2a795b7199f3a47546679d40000706680de825354bfe88411b33a11fc

  • SHA512

    c8c4730d951c41ea40eb24320071dc3cf37a8146102f8e472201e5764d16fbd17b3b33b2adfd74cee350b30ee12c40b05aa45623e4cf7d631b97e5a37040fe60

  • SSDEEP

    6144:DSltkxm4W+KzIW6B8qv4+Ornc0KulVrTy/d/uLNmpIcwb:DSzIVW+KzqBmzbTVfgd/QNm6Pb

Score
10/10
persistenceupx

Malware Config

Targets

    • Target

      22f67fb2a795b7199f3a47546679d40000706680de825354bfe88411b33a11fc

    • Size

      252KB

    • MD5

      198f3ce376661393baece0f351d18db0

    • SHA1

      09ed61b47822867797881ed0abdf0ed5e62e7027

    • SHA256

      22f67fb2a795b7199f3a47546679d40000706680de825354bfe88411b33a11fc

    • SHA512

      c8c4730d951c41ea40eb24320071dc3cf37a8146102f8e472201e5764d16fbd17b3b33b2adfd74cee350b30ee12c40b05aa45623e4cf7d631b97e5a37040fe60

    • SSDEEP

      6144:DSltkxm4W+KzIW6B8qv4+Ornc0KulVrTy/d/uLNmpIcwb:DSzIVW+KzqBmzbTVfgd/QNm6Pb

    Score
    10/10
    persistenceupx

    • Modifies WinLogon for persistence

      persistence

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks