Overview

overview

8

Static

static

bf533d0537...d9.exe

windows7-x64

8

bf533d0537...d9.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    bf533d05373e2c273174b0808798ad8e9ad4bed3ccbbb475dc75a351e830eed9

  • Size

    935KB

  • Sample

    221125-khgpfahd8t

  • MD5

    54b432246162f07d9ac65b93eb4bab0b

  • SHA1

    2a35f4da82ccd7b2a40e9e5a1f00e06ebec936f0

  • SHA256

    bf533d05373e2c273174b0808798ad8e9ad4bed3ccbbb475dc75a351e830eed9

  • SHA512

    04a6d1b25ad252d022402248a5b5627f152e43552b3990c3af133ea32d45d6a7adc5774ecc2d76caf2ad31ffa950ad571d58f58fd92debcccc95bb51f6541d2c

  • SSDEEP

    12288:I5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x42:IyHv5Z+Wzv7AiBll0OBWi6si9GP

Score
8/10
upx

Malware Config

Targets

    • Target

      bf533d05373e2c273174b0808798ad8e9ad4bed3ccbbb475dc75a351e830eed9

    • Size

      935KB

    • MD5

      54b432246162f07d9ac65b93eb4bab0b

    • SHA1

      2a35f4da82ccd7b2a40e9e5a1f00e06ebec936f0

    • SHA256

      bf533d05373e2c273174b0808798ad8e9ad4bed3ccbbb475dc75a351e830eed9

    • SHA512

      04a6d1b25ad252d022402248a5b5627f152e43552b3990c3af133ea32d45d6a7adc5774ecc2d76caf2ad31ffa950ad571d58f58fd92debcccc95bb51f6541d2c

    • SSDEEP

      12288:I5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x42:IyHv5Z+Wzv7AiBll0OBWi6si9GP

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks