Overview

overview

8

Static

static

390c1ed755...14.exe

windows7-x64

8

390c1ed755...14.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    390c1ed75579c5d8fed4aa4900f68a74c3db06caa89185cb83ef7ec1bcc93414

  • Size

    935KB

  • Sample

    221125-rn459agf71

  • MD5

    ca335d6257a45899f4721049ce83edab

  • SHA1

    2731fd44f8e5f966c535d0abbb2961dcceefafa0

  • SHA256

    390c1ed75579c5d8fed4aa4900f68a74c3db06caa89185cb83ef7ec1bcc93414

  • SHA512

    8cb4e1f045bec8b06ec95bffe14012f0d055cec33417bbe77b9d4c49b420998dfab5020e28111eb5921efbd5d0f9f165d31622316802c41c9480a83183c06002

  • SSDEEP

    12288:55Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4P:5yHv5Z+Wzv7AiBll0OBWi6si9GG

Score
8/10
upx

Malware Config

Targets

    • Target

      390c1ed75579c5d8fed4aa4900f68a74c3db06caa89185cb83ef7ec1bcc93414

    • Size

      935KB

    • MD5

      ca335d6257a45899f4721049ce83edab

    • SHA1

      2731fd44f8e5f966c535d0abbb2961dcceefafa0

    • SHA256

      390c1ed75579c5d8fed4aa4900f68a74c3db06caa89185cb83ef7ec1bcc93414

    • SHA512

      8cb4e1f045bec8b06ec95bffe14012f0d055cec33417bbe77b9d4c49b420998dfab5020e28111eb5921efbd5d0f9f165d31622316802c41c9480a83183c06002

    • SSDEEP

      12288:55Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4P:5yHv5Z+Wzv7AiBll0OBWi6si9GG

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks