Overview

overview

8

Static

static

56b673e4a3...b9.exe

windows7-x64

8

56b673e4a3...b9.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    56b673e4a3550ae33cf765265020e321f9ffab1eb77b0b4e29329bbd2c1da9b9

  • Size

    931KB

  • Sample

    221125-qaq6ssdb9s

  • MD5

    a4bef510abf58cef91ae8ed481f789bd

  • SHA1

    de376f992ef074711f1b22b95b02acfda31966c7

  • SHA256

    56b673e4a3550ae33cf765265020e321f9ffab1eb77b0b4e29329bbd2c1da9b9

  • SHA512

    2310fae1514917c8a6754ec6ea4f2e40e4e7a6cbd691f0c8a93b62bce0a208292889593498056be81f07c0ed06e7a1daabd52c7595a2f61eed4097f8989ec15f

  • SSDEEP

    24576:y6IMwPvmB/wWq+5DUTt7FGSwmpu8nL6YK:y6j19rut7FoU56

Score
8/10
upx

Malware Config

Targets

    • Target

      56b673e4a3550ae33cf765265020e321f9ffab1eb77b0b4e29329bbd2c1da9b9

    • Size

      931KB

    • MD5

      a4bef510abf58cef91ae8ed481f789bd

    • SHA1

      de376f992ef074711f1b22b95b02acfda31966c7

    • SHA256

      56b673e4a3550ae33cf765265020e321f9ffab1eb77b0b4e29329bbd2c1da9b9

    • SHA512

      2310fae1514917c8a6754ec6ea4f2e40e4e7a6cbd691f0c8a93b62bce0a208292889593498056be81f07c0ed06e7a1daabd52c7595a2f61eed4097f8989ec15f

    • SSDEEP

      24576:y6IMwPvmB/wWq+5DUTt7FGSwmpu8nL6YK:y6j19rut7FoU56

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks