Overview

overview

8

Static

static

8

72e87b1453...66.exe

windows7-x64

8

72e87b1453...66.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    72e87b1453b2f82a21cc5ae28c9b982ab134e202279b8cf64d548109d3ba0a66

  • Size

    1.2MB

  • Sample

    221125-pjx52agb55

  • MD5

    a5e75888f179b3954ae97350f5102107

  • SHA1

    07e704ead7bfcd4e1724626c63b9c0e30e016e11

  • SHA256

    72e87b1453b2f82a21cc5ae28c9b982ab134e202279b8cf64d548109d3ba0a66

  • SHA512

    bb1cda9ffa62b32ba74d7b71826c18ee3ba4d5f5c0a23b20c023acb3e60dd22385de312fc4fc254afc7ca6503247b9e4c0d8734335276a2bb33dc7032f437609

  • SSDEEP

    24576:qmx7s24upv0MePnlsTPYpz2CThhOQmDAia9HHM55w8vlPm3Tf8DdPZLqTIdmg2/K:XaAvV6sTPY7XOPl4HD8vlu3bSdPCwv

Score
8/10
upxvmprotect

Malware Config

Targets

    • Target

      72e87b1453b2f82a21cc5ae28c9b982ab134e202279b8cf64d548109d3ba0a66

    • Size

      1.2MB

    • MD5

      a5e75888f179b3954ae97350f5102107

    • SHA1

      07e704ead7bfcd4e1724626c63b9c0e30e016e11

    • SHA256

      72e87b1453b2f82a21cc5ae28c9b982ab134e202279b8cf64d548109d3ba0a66

    • SHA512

      bb1cda9ffa62b32ba74d7b71826c18ee3ba4d5f5c0a23b20c023acb3e60dd22385de312fc4fc254afc7ca6503247b9e4c0d8734335276a2bb33dc7032f437609

    • SSDEEP

      24576:qmx7s24upv0MePnlsTPYpz2CThhOQmDAia9HHM55w8vlPm3Tf8DdPZLqTIdmg2/K:XaAvV6sTPY7XOPl4HD8vlu3bSdPCwv

    Score
    8/10
    upxvmprotect

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks