Overview

overview

8

Static

static

2e8c32503e...11.exe

windows7-x64

8

2e8c32503e...11.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2e8c32503e662701103ebdba78536985723968304537b8899edd95f342a40211

  • Size

    605KB

  • Sample

    221125-dtgegsbg8w

  • MD5

    a304a900f11975459c46f80db204c2ea

  • SHA1

    d59db009ec220d35ccffedf4430339c07a342b4d

  • SHA256

    2e8c32503e662701103ebdba78536985723968304537b8899edd95f342a40211

  • SHA512

    fa9d98586372c99cb019fdd4a8ea5b4a06124a3b317a8e5304e72eb236dd5eb5ceed9ecd2a1167539d512cf01567e0d1a5b0da8b0f80ccd177d88c481919b944

  • SSDEEP

    12288:OPT1D/TP5vttQjIbcbFzkDO//w/Bz2hKHrZzij:wZAMkFv//wZHt+

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      2e8c32503e662701103ebdba78536985723968304537b8899edd95f342a40211

    • Size

      605KB

    • MD5

      a304a900f11975459c46f80db204c2ea

    • SHA1

      d59db009ec220d35ccffedf4430339c07a342b4d

    • SHA256

      2e8c32503e662701103ebdba78536985723968304537b8899edd95f342a40211

    • SHA512

      fa9d98586372c99cb019fdd4a8ea5b4a06124a3b317a8e5304e72eb236dd5eb5ceed9ecd2a1167539d512cf01567e0d1a5b0da8b0f80ccd177d88c481919b944

    • SSDEEP

      12288:OPT1D/TP5vttQjIbcbFzkDO//w/Bz2hKHrZzij:wZAMkFv//wZHt+

    Score
    8/10
    persistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks