Overview

overview

8

Static

static

a0b03947f6...03.exe

windows7-x64

8

a0b03947f6...03.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a0b03947f6e53e64e58a9a1f154c2d78e8dc048456c0c4a1f79a62f709a2e003

  • Size

    935KB

  • Sample

    221125-lxh2gscf4x

  • MD5

    b02371c2f6267b0cfc39e88072e4f627

  • SHA1

    80bc341f12b4c434254bbefa0394ec2dac568faf

  • SHA256

    a0b03947f6e53e64e58a9a1f154c2d78e8dc048456c0c4a1f79a62f709a2e003

  • SHA512

    65286d291632488e9f79ef0e359541a00ecf9aee21a8ddca0981fcc13510b1b2bb412bfb225b3134ac570fb1d120375d51d2a88e343985d2367712b9a2eff383

  • SSDEEP

    12288:p5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x42:pyHv5Z+Wzv7AiBll0OBWi6si9Gr

Score
8/10
upx

Malware Config

Targets

    • Target

      a0b03947f6e53e64e58a9a1f154c2d78e8dc048456c0c4a1f79a62f709a2e003

    • Size

      935KB

    • MD5

      b02371c2f6267b0cfc39e88072e4f627

    • SHA1

      80bc341f12b4c434254bbefa0394ec2dac568faf

    • SHA256

      a0b03947f6e53e64e58a9a1f154c2d78e8dc048456c0c4a1f79a62f709a2e003

    • SHA512

      65286d291632488e9f79ef0e359541a00ecf9aee21a8ddca0981fcc13510b1b2bb412bfb225b3134ac570fb1d120375d51d2a88e343985d2367712b9a2eff383

    • SSDEEP

      12288:p5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x42:pyHv5Z+Wzv7AiBll0OBWi6si9Gr

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks