Overview

overview

8

Static

static

013fffa2c7...79.exe

windows7-x64

8

013fffa2c7...79.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    013fffa2c77b282f1f7ebab053606a03fe5a7628826598c7754c3559621efb79

  • Size

    935KB

  • Sample

    221125-varjsabd46

  • MD5

    54d98630646f5f08d7e251587dca4c6f

  • SHA1

    0c5a1c7c90aaeb01c167f48f5a680c928278f408

  • SHA256

    013fffa2c77b282f1f7ebab053606a03fe5a7628826598c7754c3559621efb79

  • SHA512

    57229099b90595fb482ea506c24409d25aaca022f65cb620f71913a8a265939e2ecdd613924395db44e8d42b605b858cb9e1739cb7a76d850d70ed692345f295

  • SSDEEP

    12288:J5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4:JyHv5Z+Wzv7AiBll0OBWi6si9G

Score
8/10
upx

Malware Config

Targets

    • Target

      013fffa2c77b282f1f7ebab053606a03fe5a7628826598c7754c3559621efb79

    • Size

      935KB

    • MD5

      54d98630646f5f08d7e251587dca4c6f

    • SHA1

      0c5a1c7c90aaeb01c167f48f5a680c928278f408

    • SHA256

      013fffa2c77b282f1f7ebab053606a03fe5a7628826598c7754c3559621efb79

    • SHA512

      57229099b90595fb482ea506c24409d25aaca022f65cb620f71913a8a265939e2ecdd613924395db44e8d42b605b858cb9e1739cb7a76d850d70ed692345f295

    • SSDEEP

      12288:J5Yr15f753d5QWIDz/Wz9NCyzHinLipNDJ5eoFb0OZ/WiGaks+HL63S27x4:JyHv5Z+Wzv7AiBll0OBWi6si9G

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks