Overview

overview

8

Static

static

8

e300b9750f...27.exe

windows7-x64

8

e300b9750f...27.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e300b9750f8069e7dfc4c893d595e9810c94db3c3306a4d0033bc3718c414a27

  • Size

    30KB

  • Sample

    221124-ekb9vafg78

  • MD5

    0490b9f4086253164293e05d09d1b52e

  • SHA1

    62757ecf7bfca143842c128902170ab42ec6b837

  • SHA256

    e300b9750f8069e7dfc4c893d595e9810c94db3c3306a4d0033bc3718c414a27

  • SHA512

    d4f63085a834511b8bac579e9890efcc0dfed1dcd5d155abfd010f0ffd1f9b7b10c148afbd1cb52a436088bd87a71292ee8de5d3d082eac6079804ae67328b54

  • SSDEEP

    384:wvlA1g4Yoh2P+Wm9St4MbwQ8VlOmLLmBZy/M3o81zulBP8sOwFEbhl18046cFZ:wvlH+TSaMsFVl/Lm/hOOtle0ID

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      e300b9750f8069e7dfc4c893d595e9810c94db3c3306a4d0033bc3718c414a27

    • Size

      30KB

    • MD5

      0490b9f4086253164293e05d09d1b52e

    • SHA1

      62757ecf7bfca143842c128902170ab42ec6b837

    • SHA256

      e300b9750f8069e7dfc4c893d595e9810c94db3c3306a4d0033bc3718c414a27

    • SHA512

      d4f63085a834511b8bac579e9890efcc0dfed1dcd5d155abfd010f0ffd1f9b7b10c148afbd1cb52a436088bd87a71292ee8de5d3d082eac6079804ae67328b54

    • SSDEEP

      384:wvlA1g4Yoh2P+Wm9St4MbwQ8VlOmLLmBZy/M3o81zulBP8sOwFEbhl18046cFZ:wvlH+TSaMsFVl/Lm/hOOtle0ID

    Score
    8/10
    persistenceupx

    • Adds policy Run key to start application

      persistence

    • Executes dropped EXE

    • Modifies Installed Components in the registry

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Deletes itself

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks