Overview

overview

8

Static

static

8

6f69a8ba90...2c.exe

windows7-x64

8

6f69a8ba90...2c.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6f69a8ba90daa34a130d97c4f61089a46d21cfaed2b02422f0f1cf89ef0e5f2c

  • Size

    69KB

  • Sample

    221127-s9kjeadc8t

  • MD5

    9ea38549db22318be6020b7e6c82c2d2

  • SHA1

    0a36f31f09abbd16b433a4ed3965b9be2ff45a48

  • SHA256

    6f69a8ba90daa34a130d97c4f61089a46d21cfaed2b02422f0f1cf89ef0e5f2c

  • SHA512

    8b11de3c8feb278c302c7d6792dc9f19862a6b66f0fb7768cb416ee823e66d1aff2b9407c4e823a0e03ea924058aa61a5856cbb10906978e8950c326e6d19061

  • SSDEEP

    1536:4aIdJ8LqMbEwOLc3tfnbvTzkeOFjlkHzrbq:4ah3bEwOLc3tfnvzk1vq2

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      6f69a8ba90daa34a130d97c4f61089a46d21cfaed2b02422f0f1cf89ef0e5f2c

    • Size

      69KB

    • MD5

      9ea38549db22318be6020b7e6c82c2d2

    • SHA1

      0a36f31f09abbd16b433a4ed3965b9be2ff45a48

    • SHA256

      6f69a8ba90daa34a130d97c4f61089a46d21cfaed2b02422f0f1cf89ef0e5f2c

    • SHA512

      8b11de3c8feb278c302c7d6792dc9f19862a6b66f0fb7768cb416ee823e66d1aff2b9407c4e823a0e03ea924058aa61a5856cbb10906978e8950c326e6d19061

    • SSDEEP

      1536:4aIdJ8LqMbEwOLc3tfnbvTzkeOFjlkHzrbq:4ah3bEwOLc3tfnvzk1vq2

    Score
    8/10
    persistenceupx

    • Drops file in Drivers directory

    • Sets service image path in registry

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks