Overview

overview

8

Static

static

59d3296f17...aa.exe

windows7-x64

8

59d3296f17...aa.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    59d3296f175dfdc8489060c869f9ea962990856c72da3ef399651d7b843650aa

  • Size

    935KB

  • Sample

    221125-p57llahg27

  • MD5

    1ecfb75de119d5aaf8680c81e482c2f1

  • SHA1

    0587ce38d5233bfe5e8875222d8cca393a8094f2

  • SHA256

    59d3296f175dfdc8489060c869f9ea962990856c72da3ef399651d7b843650aa

  • SHA512

    9a2a6678e6c10fe29e27e12622257aebc9f444ca834a95059af2b5b4ab450356ee939e7fcc7e67daa09a60c4edaddaa1b4fe96bf13705dd2bbea2acbe6f4bb0d

  • SSDEEP

    12288:o5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x45:oyHv5Z+Wzv7AiBll0OBWi6si9GM

Score
8/10
upx

Malware Config

Targets

    • Target

      59d3296f175dfdc8489060c869f9ea962990856c72da3ef399651d7b843650aa

    • Size

      935KB

    • MD5

      1ecfb75de119d5aaf8680c81e482c2f1

    • SHA1

      0587ce38d5233bfe5e8875222d8cca393a8094f2

    • SHA256

      59d3296f175dfdc8489060c869f9ea962990856c72da3ef399651d7b843650aa

    • SHA512

      9a2a6678e6c10fe29e27e12622257aebc9f444ca834a95059af2b5b4ab450356ee939e7fcc7e67daa09a60c4edaddaa1b4fe96bf13705dd2bbea2acbe6f4bb0d

    • SSDEEP

      12288:o5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x45:oyHv5Z+Wzv7AiBll0OBWi6si9GM

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks