Overview

overview

8

Static

static

6214fe41ed...f9.exe

windows7-x64

8

6214fe41ed...f9.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6214fe41edbfd92243c6b585356b5e2822e49747bb0c03a917798e7d235b04f9

  • Size

    935KB

  • Sample

    221125-psbndsgg49

  • MD5

    f75d707b845decf0e267eb67eebddff5

  • SHA1

    cb13b1e45b3a51ae5aca4bb8d00d7497a58a5d93

  • SHA256

    6214fe41edbfd92243c6b585356b5e2822e49747bb0c03a917798e7d235b04f9

  • SHA512

    a805af8d1e87a47cae61c782a8086d0705812383b9963fc7fa6c97867f1207c7e6d28ce7fc34764416792357b8e0044ed524ef077b90f7145643a3a001889f9c

  • SSDEEP

    12288:I5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4DQ:IyHv5Z+Wzv7AiBll0OBWi6si9GSQ

Score
8/10
upx

Malware Config

Targets

    • Target

      6214fe41edbfd92243c6b585356b5e2822e49747bb0c03a917798e7d235b04f9

    • Size

      935KB

    • MD5

      f75d707b845decf0e267eb67eebddff5

    • SHA1

      cb13b1e45b3a51ae5aca4bb8d00d7497a58a5d93

    • SHA256

      6214fe41edbfd92243c6b585356b5e2822e49747bb0c03a917798e7d235b04f9

    • SHA512

      a805af8d1e87a47cae61c782a8086d0705812383b9963fc7fa6c97867f1207c7e6d28ce7fc34764416792357b8e0044ed524ef077b90f7145643a3a001889f9c

    • SSDEEP

      12288:I5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4DQ:IyHv5Z+Wzv7AiBll0OBWi6si9GSQ

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks