Overview

overview

8

Static

static

6b04c189b4...5e.exe

windows7-x64

8

6b04c189b4...5e.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    6b04c189b4ec514afef6b606ebf0804db34343fd64546c0f24a2a77346117e5e

  • Size

    865KB

  • Sample

    221129-rnkrlsah8x

  • MD5

    6d825047b1cf625a16168728cc3158e4

  • SHA1

    c9bcb08e4956fa509d11543f0c4f1146dd750fa2

  • SHA256

    6b04c189b4ec514afef6b606ebf0804db34343fd64546c0f24a2a77346117e5e

  • SHA512

    457baa14838ba9250b996582e99ab5ede42d4bb4cb9ac465140cc867ab68f98e5606e4aa71a5bc5c4549c2bd75c6b6fa336ab90d6a0d3743449a2d9122219d86

  • SSDEEP

    12288:mnwL46GI2Kc3kwCJhP5YS3Myjvoy6YMHbEqKkRqg4y9wNqEwOhGtH4DmAe9s3ezI:ENDI2Kc3kwCTPCIOw/kRgq6KUHsz6p

Score
8/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      6b04c189b4ec514afef6b606ebf0804db34343fd64546c0f24a2a77346117e5e

    • Size

      865KB

    • MD5

      6d825047b1cf625a16168728cc3158e4

    • SHA1

      c9bcb08e4956fa509d11543f0c4f1146dd750fa2

    • SHA256

      6b04c189b4ec514afef6b606ebf0804db34343fd64546c0f24a2a77346117e5e

    • SHA512

      457baa14838ba9250b996582e99ab5ede42d4bb4cb9ac465140cc867ab68f98e5606e4aa71a5bc5c4549c2bd75c6b6fa336ab90d6a0d3743449a2d9122219d86

    • SSDEEP

      12288:mnwL46GI2Kc3kwCJhP5YS3Myjvoy6YMHbEqKkRqg4y9wNqEwOhGtH4DmAe9s3ezI:ENDI2Kc3kwCTPCIOw/kRgq6KUHsz6p

    Score
    8/10
    discoverypersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks