Overview

overview

8

Static

static

76Ʊķ.exe

windows7-x64

8

76Ʊķ.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    11522acc832bb7b5fe11d89fadcce99ae61296ea69ccc20415bab215213dfd3d

  • Size

    2.3MB

  • Sample

    221125-ylabesec2w

  • MD5

    f26fcdd7683d51c4bdb091aa8f6d08f0

  • SHA1

    5e52813c8a487ff2711391cbce0d18716ab64019

  • SHA256

    11522acc832bb7b5fe11d89fadcce99ae61296ea69ccc20415bab215213dfd3d

  • SHA512

    473bc9cdd61acf307956d9c98faac35304bc9347f9633c86c0dda7485ae97b076d3553cd7b1c3194986747edcf4788e4d5ed901f277f08625e59266181417f8d

  • SSDEEP

    49152:Fj4Tg7voKXwYw9ePAj3rCZXU1HvpOILFjzSTiGOwNrbD13HL:FjfwrVrrp1PLFLGVNB3HL

Score
8/10
aspackv2upx

Malware Config

Targets

    • Target

      76Ʊķ.exe

    • Size

      2.5MB

    • MD5

      0d5fa7c34a8fa3e1dd8eb8f8d7560b9a

    • SHA1

      b289a87bfac13f7e67b30f3fb983d840755c3ec8

    • SHA256

      9ddc8b7695ba14a2abdee4ddcef82195a75ee98d2796961d9825f9e262e01dd1

    • SHA512

      0a7a92e58125762bc5b098e7c511a9c26e8cb52c1cf979e72be415110db6edee0e91be196dabca6ee7ea84c41caf3ff584849b6d4fd19597560f147eaf1b3588

    • SSDEEP

      49152:dgj43y3vESNaYwHOpAFLN6rfULDC7Dds9FB2rGigg/o6R3R13HYu:ijB8555NnLgGHV6g6B34u

    Score
    8/10
    aspackv2upx

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks