Overview

overview

8

Static

static

0996071a86...51.exe

windows7-x64

8

0996071a86...51.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    0996071a86c99584eba34508f35daef06b03bbe6fee794528c75622878aae551

  • Size

    935KB

  • Sample

    221125-twhnbsag94

  • MD5

    86b144da4d7d82778b0c9b21f6115241

  • SHA1

    450403b5d4b8e2079e221d5aa584c3aedd97df1c

  • SHA256

    0996071a86c99584eba34508f35daef06b03bbe6fee794528c75622878aae551

  • SHA512

    e365202c562d1ae90dda014ea4eb2328defc6c776b57295415f2f4487f5381b68200fdd42c9b5e0b73bfdb1c27d3e1bc9c09da624b930b94f240eabdd7274b1f

  • SSDEEP

    12288:o5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4K:oyHv5Z+Wzv7AiBll0OBWi6si9Gv

Score
8/10
upx

Malware Config

Targets

    • Target

      0996071a86c99584eba34508f35daef06b03bbe6fee794528c75622878aae551

    • Size

      935KB

    • MD5

      86b144da4d7d82778b0c9b21f6115241

    • SHA1

      450403b5d4b8e2079e221d5aa584c3aedd97df1c

    • SHA256

      0996071a86c99584eba34508f35daef06b03bbe6fee794528c75622878aae551

    • SHA512

      e365202c562d1ae90dda014ea4eb2328defc6c776b57295415f2f4487f5381b68200fdd42c9b5e0b73bfdb1c27d3e1bc9c09da624b930b94f240eabdd7274b1f

    • SSDEEP

      12288:o5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4K:oyHv5Z+Wzv7AiBll0OBWi6si9Gv

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks