Overview

overview

8

Static

static

bc6ff0d1ba...00.exe

windows7-x64

8

bc6ff0d1ba...00.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    bc6ff0d1baf931eaf76b18605693756b5effa1c1b4f1bfa35b7e448c2c37e100

  • Size

    931KB

  • Sample

    221125-kmyhraec74

  • MD5

    81bcd514f9f34427c4013d0f9d7ba4fe

  • SHA1

    8b84d74f10abc069bb817952bc6f5fd39166cb53

  • SHA256

    bc6ff0d1baf931eaf76b18605693756b5effa1c1b4f1bfa35b7e448c2c37e100

  • SHA512

    25de15d622a3cc12569de5f218bd3cf5885c150b4a8c818128d4f940d2e58cf7b2ea197a4ca0339d14ed19488dea71536dc9db0c0d27e4b928d97f5a3c03ea33

  • SSDEEP

    24576:i6IMwPvmB/wWq+5DUTt7FGSwmpu8nL6YK:i6j19rut7FoU56

Score
8/10
upx

Malware Config

Targets

    • Target

      bc6ff0d1baf931eaf76b18605693756b5effa1c1b4f1bfa35b7e448c2c37e100

    • Size

      931KB

    • MD5

      81bcd514f9f34427c4013d0f9d7ba4fe

    • SHA1

      8b84d74f10abc069bb817952bc6f5fd39166cb53

    • SHA256

      bc6ff0d1baf931eaf76b18605693756b5effa1c1b4f1bfa35b7e448c2c37e100

    • SHA512

      25de15d622a3cc12569de5f218bd3cf5885c150b4a8c818128d4f940d2e58cf7b2ea197a4ca0339d14ed19488dea71536dc9db0c0d27e4b928d97f5a3c03ea33

    • SSDEEP

      24576:i6IMwPvmB/wWq+5DUTt7FGSwmpu8nL6YK:i6j19rut7FoU56

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks