Overview

overview

8

Static

static

6445c6f0a5...74.exe

windows7-x64

8

6445c6f0a5...74.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6445c6f0a53b334a93c6e5e36fd4f5aaa1b7601fcbbfe4291c854cd3b1072e74

  • Size

    932KB

  • Sample

    221124-ex92msca3x

  • MD5

    241f3cce5dcb1d5b9c525c654426fa16

  • SHA1

    240c8c6b25a0e4105b3933e6d33baedbd4be94a8

  • SHA256

    6445c6f0a53b334a93c6e5e36fd4f5aaa1b7601fcbbfe4291c854cd3b1072e74

  • SHA512

    b8c3e20bf65e7deed2ab047806417a952e791f7f9058fb5fa54db59568062cc5d086c170857952bd2c4f690e6b676b6012fb3fbbfa52e0ae10db387003814d85

  • SSDEEP

    12288:ZSFIeCGLwUZhQjzqXJsFP6CgZdr9CpqEzFdcLVNNl0fmjKR3KjKSLt8:ZoWvU/m+opqEzFdcLVNPUm03KjzLt

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      6445c6f0a53b334a93c6e5e36fd4f5aaa1b7601fcbbfe4291c854cd3b1072e74

    • Size

      932KB

    • MD5

      241f3cce5dcb1d5b9c525c654426fa16

    • SHA1

      240c8c6b25a0e4105b3933e6d33baedbd4be94a8

    • SHA256

      6445c6f0a53b334a93c6e5e36fd4f5aaa1b7601fcbbfe4291c854cd3b1072e74

    • SHA512

      b8c3e20bf65e7deed2ab047806417a952e791f7f9058fb5fa54db59568062cc5d086c170857952bd2c4f690e6b676b6012fb3fbbfa52e0ae10db387003814d85

    • SSDEEP

      12288:ZSFIeCGLwUZhQjzqXJsFP6CgZdr9CpqEzFdcLVNNl0fmjKR3KjKSLt8:ZoWvU/m+opqEzFdcLVNPUm03KjzLt

    Score
    8/10
    persistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks