Overview

overview

8

Static

static

65854f3a7b...f4.exe

windows7-x64

8

65854f3a7b...f4.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    65854f3a7b7b063618161f4c70215727de5f4545219ac393870dc7aa989691f4

  • Size

    935KB

  • Sample

    221125-pm286agd46

  • MD5

    6dc79b365cefef8cc96136bde4130dd8

  • SHA1

    9a975f1925947d38c7f650d31c9a984576767dd4

  • SHA256

    65854f3a7b7b063618161f4c70215727de5f4545219ac393870dc7aa989691f4

  • SHA512

    44b2d76cb2ed2cde6c801ff9f2e5c0f40ba81786766760402c35d59fbdf1be2a04bef468973ee422ef4ef68e9dda84a62f451b63334ff797f312419dffa95be8

  • SSDEEP

    12288:p5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4F:pyHv5Z+Wzv7AiBll0OBWi6si9GM

Score
8/10
upx

Malware Config

Targets

    • Target

      65854f3a7b7b063618161f4c70215727de5f4545219ac393870dc7aa989691f4

    • Size

      935KB

    • MD5

      6dc79b365cefef8cc96136bde4130dd8

    • SHA1

      9a975f1925947d38c7f650d31c9a984576767dd4

    • SHA256

      65854f3a7b7b063618161f4c70215727de5f4545219ac393870dc7aa989691f4

    • SHA512

      44b2d76cb2ed2cde6c801ff9f2e5c0f40ba81786766760402c35d59fbdf1be2a04bef468973ee422ef4ef68e9dda84a62f451b63334ff797f312419dffa95be8

    • SSDEEP

      12288:p5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4F:pyHv5Z+Wzv7AiBll0OBWi6si9GM

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks