Overview

overview

8

Static

static

6385916b1f...dd.exe

windows7-x64

8

6385916b1f...dd.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6385916b1ff54a9e2c3bd9d1b614390b4b565b1bb370047b0fb935a533258cdd

  • Size

    931KB

  • Sample

    221125-pqanbage92

  • MD5

    f57970c952efc3afedae798fc8363952

  • SHA1

    24dc0d9b28875e0b70b89d61208ab5bf39295d5b

  • SHA256

    6385916b1ff54a9e2c3bd9d1b614390b4b565b1bb370047b0fb935a533258cdd

  • SHA512

    6c97d7ee5bbd790cf1b5d18dfaa9840d8e1d0407a92075b233f33c54e5fa73fe178d15032e7d8f80ebcc69104ba683380b82185015287a129472114d7b5ffbe2

  • SSDEEP

    24576:C6IMwPvmB/wWq+5DUTt7FGSwmpu8nL6YKi:C6j19rut7FoU56Y

Score
8/10
upx

Malware Config

Targets

    • Target

      6385916b1ff54a9e2c3bd9d1b614390b4b565b1bb370047b0fb935a533258cdd

    • Size

      931KB

    • MD5

      f57970c952efc3afedae798fc8363952

    • SHA1

      24dc0d9b28875e0b70b89d61208ab5bf39295d5b

    • SHA256

      6385916b1ff54a9e2c3bd9d1b614390b4b565b1bb370047b0fb935a533258cdd

    • SHA512

      6c97d7ee5bbd790cf1b5d18dfaa9840d8e1d0407a92075b233f33c54e5fa73fe178d15032e7d8f80ebcc69104ba683380b82185015287a129472114d7b5ffbe2

    • SSDEEP

      24576:C6IMwPvmB/wWq+5DUTt7FGSwmpu8nL6YKi:C6j19rut7FoU56Y

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks