Overview

overview

8

Static

static

79cc7051ab...ac.exe

windows7-x64

8

79cc7051ab...ac.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    79cc7051ab56081e576f15181fedebf40c33bf6bc1ed5a4a1166930be7c861ac

  • Size

    935KB

  • Sample

    221125-npv27adg96

  • MD5

    3cbe6eb21001a6aebefd7b3ac5da85c9

  • SHA1

    ee03bb15529cfbe5746c12db8772a0c5ce53da17

  • SHA256

    79cc7051ab56081e576f15181fedebf40c33bf6bc1ed5a4a1166930be7c861ac

  • SHA512

    1911eee073d8c02d25084d865e9281a83315a24b5f775d99ba0d3f2ea5d514d29f84a125c6d361e83b6d60f8e42bca26534706c31e001b9517f627dc1dc18716

  • SSDEEP

    12288:o5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4R:oyHv5Z+Wzv7AiBll0OBWi6si9G4

Score
8/10
upx

Malware Config

Targets

    • Target

      79cc7051ab56081e576f15181fedebf40c33bf6bc1ed5a4a1166930be7c861ac

    • Size

      935KB

    • MD5

      3cbe6eb21001a6aebefd7b3ac5da85c9

    • SHA1

      ee03bb15529cfbe5746c12db8772a0c5ce53da17

    • SHA256

      79cc7051ab56081e576f15181fedebf40c33bf6bc1ed5a4a1166930be7c861ac

    • SHA512

      1911eee073d8c02d25084d865e9281a83315a24b5f775d99ba0d3f2ea5d514d29f84a125c6d361e83b6d60f8e42bca26534706c31e001b9517f627dc1dc18716

    • SSDEEP

      12288:o5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4R:oyHv5Z+Wzv7AiBll0OBWi6si9G4

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks