Overview

overview

8

Static

static

63b8806205...fb.exe

windows7-x64

8

63b8806205...fb.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    63b8806205021c69a288a471e6a7bf1c07beb1685c8f53a27b77e6565e2101fb

  • Size

    935KB

  • Sample

    221125-pp3mpsbg3z

  • MD5

    b8ff33247461a96df45e2cc781b950cf

  • SHA1

    3137dc1bf4910a6065353c288cd69419710fe3cd

  • SHA256

    63b8806205021c69a288a471e6a7bf1c07beb1685c8f53a27b77e6565e2101fb

  • SHA512

    8ac75ef2f1b53c35d048367469c493377b0047192294d3aba82a07403a6c52ac64463f441954b61685ba1efccf219b2205612f3f2a1db73f9443f72a3d1b54f5

  • SSDEEP

    12288:I5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4n:IyHv5Z+Wzv7AiBll0OBWi6si9G6

Score
8/10
upx

Malware Config

Targets

    • Target

      63b8806205021c69a288a471e6a7bf1c07beb1685c8f53a27b77e6565e2101fb

    • Size

      935KB

    • MD5

      b8ff33247461a96df45e2cc781b950cf

    • SHA1

      3137dc1bf4910a6065353c288cd69419710fe3cd

    • SHA256

      63b8806205021c69a288a471e6a7bf1c07beb1685c8f53a27b77e6565e2101fb

    • SHA512

      8ac75ef2f1b53c35d048367469c493377b0047192294d3aba82a07403a6c52ac64463f441954b61685ba1efccf219b2205612f3f2a1db73f9443f72a3d1b54f5

    • SSDEEP

      12288:I5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4n:IyHv5Z+Wzv7AiBll0OBWi6si9G6

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks