Overview

overview

8

Static

static

8

313e13a4cb...da.exe

windows7-x64

8

313e13a4cb...da.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    313e13a4cb9ad6122469203443496091e866399acf4a1287cf770ba4d30b10da

  • Size

    50KB

  • Sample

    221125-j8mspsdd56

  • MD5

    f99a2f6a8b39b58c97ebb494411a847b

  • SHA1

    25146825c0c7009694b132c592da83092e126eed

  • SHA256

    313e13a4cb9ad6122469203443496091e866399acf4a1287cf770ba4d30b10da

  • SHA512

    3f8872be713514d00008c17e39e0e266787a4bdaefec860603bb5a3f9c85b536861732d252d99a82eadc951371deb5d5a03255969760620567b2a52fe9182c2f

  • SSDEEP

    1536:1ytJSdb14Xz6RZWjSE/cHOR8A86uoeTnqB44dmK:sEF106RZWFEuG6

Score
8/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      313e13a4cb9ad6122469203443496091e866399acf4a1287cf770ba4d30b10da

    • Size

      50KB

    • MD5

      f99a2f6a8b39b58c97ebb494411a847b

    • SHA1

      25146825c0c7009694b132c592da83092e126eed

    • SHA256

      313e13a4cb9ad6122469203443496091e866399acf4a1287cf770ba4d30b10da

    • SHA512

      3f8872be713514d00008c17e39e0e266787a4bdaefec860603bb5a3f9c85b536861732d252d99a82eadc951371deb5d5a03255969760620567b2a52fe9182c2f

    • SSDEEP

      1536:1ytJSdb14Xz6RZWjSE/cHOR8A86uoeTnqB44dmK:sEF106RZWFEuG6

    Score
    8/10
    discoverypersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks