Overview

overview

8

Static

static

b1910d2f0b...e3.exe

windows7-x64

8

b1910d2f0b...e3.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b1910d2f0b0a9a4bed8fa0b0b215c0af1d5d68efd92e1d66f54873cf1e9dbfe3

  • Size

    602KB

  • Sample

    221126-3efl3scg35

  • MD5

    174e8bbada23f9f089460dc2fe2bf090

  • SHA1

    0e2ec170dafde18cd5e3fb303cf0597f06cdc435

  • SHA256

    b1910d2f0b0a9a4bed8fa0b0b215c0af1d5d68efd92e1d66f54873cf1e9dbfe3

  • SHA512

    ce8eedf0ce171de4d1333fb6d23c784140c554f2ad8f532a014e080d6c3941ee2c4c044613d654a2d7434e13197698f67b5d28dd86ae801e00306e040ad4a093

  • SSDEEP

    12288:IjpI+jCc+V8QiLlP+EUo2NCwbDpZL6SH:Iquf+VELlUouJb1NZH

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      b1910d2f0b0a9a4bed8fa0b0b215c0af1d5d68efd92e1d66f54873cf1e9dbfe3

    • Size

      602KB

    • MD5

      174e8bbada23f9f089460dc2fe2bf090

    • SHA1

      0e2ec170dafde18cd5e3fb303cf0597f06cdc435

    • SHA256

      b1910d2f0b0a9a4bed8fa0b0b215c0af1d5d68efd92e1d66f54873cf1e9dbfe3

    • SHA512

      ce8eedf0ce171de4d1333fb6d23c784140c554f2ad8f532a014e080d6c3941ee2c4c044613d654a2d7434e13197698f67b5d28dd86ae801e00306e040ad4a093

    • SSDEEP

      12288:IjpI+jCc+V8QiLlP+EUo2NCwbDpZL6SH:Iquf+VELlUouJb1NZH

    Score
    8/10
    persistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks