Overview

overview

9

Static

static

e25ddb86e1...a5.exe

windows7-x64

9

e25ddb86e1...a5.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e25ddb86e1618c72b31e3b378d1fa44fe6176c304c517efbda10e3b439036ea5

  • Size

    6.6MB

  • Sample

    221126-vgg9pahh88

  • MD5

    503de1c6e70ee25217c08ac342974081

  • SHA1

    208571b04ffcf3753579985b78e53b7ca2ab1632

  • SHA256

    e25ddb86e1618c72b31e3b378d1fa44fe6176c304c517efbda10e3b439036ea5

  • SHA512

    4dab5a9acd698eb6d4c4b16d80eac193440fc355dee9571819dc3f075dfffe023d1a0d30b7b29a422e09e8c2b9f93b243cd48059a0ae91ea4eaca5f67ae6ac85

  • SSDEEP

    196608:8GrkKQsUAubQPcRgbBHzhrBeF9AsFX4PG:8G6sucp/spQG

Score
9/10
upx

Malware Config

Targets

    • Target

      e25ddb86e1618c72b31e3b378d1fa44fe6176c304c517efbda10e3b439036ea5

    • Size

      6.6MB

    • MD5

      503de1c6e70ee25217c08ac342974081

    • SHA1

      208571b04ffcf3753579985b78e53b7ca2ab1632

    • SHA256

      e25ddb86e1618c72b31e3b378d1fa44fe6176c304c517efbda10e3b439036ea5

    • SHA512

      4dab5a9acd698eb6d4c4b16d80eac193440fc355dee9571819dc3f075dfffe023d1a0d30b7b29a422e09e8c2b9f93b243cd48059a0ae91ea4eaca5f67ae6ac85

    • SSDEEP

      196608:8GrkKQsUAubQPcRgbBHzhrBeF9AsFX4PG:8G6sucp/spQG

    Score
    9/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks