Overview

overview

8

Static

static

5d290c158a...5d.exe

windows7-x64

8

5d290c158a...5d.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    5d290c158aef1a567f82d84cfb786aae27ba3c83c4247e966047894ad277865d

  • Size

    931KB

  • Sample

    221125-pz5j2shd23

  • MD5

    4f2cd87d55de447d221902f5ee97e950

  • SHA1

    eb1cadbe8092d5bd89c23c3ac5ee923eecbf09a6

  • SHA256

    5d290c158aef1a567f82d84cfb786aae27ba3c83c4247e966047894ad277865d

  • SHA512

    0d2475333ecd955742c58c83dd4a30182f54480c4ca4e1d864d894149b2b7ae28330cb5fb5452e633580d6389ceb88e12fdd4836077a0735a680d29c5bbe20b4

  • SSDEEP

    24576:C6IMwPvmB/wWq+5DUTt7FGSwmpu8nL6YK1:C6j19rut7FoU56f

Score
8/10
upx

Malware Config

Targets

    • Target

      5d290c158aef1a567f82d84cfb786aae27ba3c83c4247e966047894ad277865d

    • Size

      931KB

    • MD5

      4f2cd87d55de447d221902f5ee97e950

    • SHA1

      eb1cadbe8092d5bd89c23c3ac5ee923eecbf09a6

    • SHA256

      5d290c158aef1a567f82d84cfb786aae27ba3c83c4247e966047894ad277865d

    • SHA512

      0d2475333ecd955742c58c83dd4a30182f54480c4ca4e1d864d894149b2b7ae28330cb5fb5452e633580d6389ceb88e12fdd4836077a0735a680d29c5bbe20b4

    • SSDEEP

      24576:C6IMwPvmB/wWq+5DUTt7FGSwmpu8nL6YK1:C6j19rut7FoU56f

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks