Overview

overview

8

Static

static

ea6e94c783...3a.exe

windows7-x64

8

ea6e94c783...3a.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ea6e94c78348efe07670e871d1c5e09b89635a0c6cda46468326861a8d32533a

  • Size

    931KB

  • Sample

    221125-hhetqscd3s

  • MD5

    2a19e864f781cbb59b16d37b32df89b5

  • SHA1

    6ff51c2ee6256813d5519d59a6bb910b55962906

  • SHA256

    ea6e94c78348efe07670e871d1c5e09b89635a0c6cda46468326861a8d32533a

  • SHA512

    0bb17ed64b8f9c3d8d5a1d45a43c0a63c7cdff04fff581a360cce419384e7bac88f4ebe2883ac40ba0e40cc0f5feedd3a30f1ff9f1abf215791a56ae66c3ab58

  • SSDEEP

    24576:y6IMwPvmB/wWq+5DUTt7FGSwmpu8nL6YK:y6j19rut7FoU56

Score
8/10
upx

Malware Config

Targets

    • Target

      ea6e94c78348efe07670e871d1c5e09b89635a0c6cda46468326861a8d32533a

    • Size

      931KB

    • MD5

      2a19e864f781cbb59b16d37b32df89b5

    • SHA1

      6ff51c2ee6256813d5519d59a6bb910b55962906

    • SHA256

      ea6e94c78348efe07670e871d1c5e09b89635a0c6cda46468326861a8d32533a

    • SHA512

      0bb17ed64b8f9c3d8d5a1d45a43c0a63c7cdff04fff581a360cce419384e7bac88f4ebe2883ac40ba0e40cc0f5feedd3a30f1ff9f1abf215791a56ae66c3ab58

    • SSDEEP

      24576:y6IMwPvmB/wWq+5DUTt7FGSwmpu8nL6YK:y6j19rut7FoU56

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks