Overview

overview

9

Static

static

17cf0c90b7...30.exe

windows7-x64

9

17cf0c90b7...30.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    17cf0c90b735d389abdca65bc73b98b48fb01d1864492899ce4da354fd262a30

  • Size

    5.5MB

  • Sample

    221127-1tm9csbg27

  • MD5

    87a620f9785dc74b9cd20f298d4feb94

  • SHA1

    4aa847c6b2cb22edca5b4c4bb6dfbd0e4c656c8f

  • SHA256

    17cf0c90b735d389abdca65bc73b98b48fb01d1864492899ce4da354fd262a30

  • SHA512

    21f105fe5590250b9966014ee2d6c3b6c2f450863ab4a157a08d73d70e0e0b0ed631045fd691cfcf5c7fdcc288d116cf19ae3f4391b46dff12204e76923cb4e1

  • SSDEEP

    98304:R3rsqo655QxUIH2ai1ZS3crax+ml6//YgvHTtQCFYkHU:jo6zJIy7j3IgvztQCFYk0

Score
9/10
upx

Malware Config

Targets

    • Target

      17cf0c90b735d389abdca65bc73b98b48fb01d1864492899ce4da354fd262a30

    • Size

      5.5MB

    • MD5

      87a620f9785dc74b9cd20f298d4feb94

    • SHA1

      4aa847c6b2cb22edca5b4c4bb6dfbd0e4c656c8f

    • SHA256

      17cf0c90b735d389abdca65bc73b98b48fb01d1864492899ce4da354fd262a30

    • SHA512

      21f105fe5590250b9966014ee2d6c3b6c2f450863ab4a157a08d73d70e0e0b0ed631045fd691cfcf5c7fdcc288d116cf19ae3f4391b46dff12204e76923cb4e1

    • SSDEEP

      98304:R3rsqo655QxUIH2ai1ZS3crax+ml6//YgvHTtQCFYkHU:jo6zJIy7j3IgvztQCFYk0

    Score
    9/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks