Overview

overview

8

Static

static

8

2d1e6ba438...3a.exe

windows7-x64

8

2d1e6ba438...3a.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    2d1e6ba438d3d00b2203749d15de3e929aa5c3f1989dfd41cd1d4bba9beed53a

  • Size

    208KB

  • Sample

    221202-vh7wqsff39

  • MD5

    254b03df553a127dfee43cd29e364b00

  • SHA1

    a613536eb89febb0b041bc6730bf0ea0f54f327a

  • SHA256

    2d1e6ba438d3d00b2203749d15de3e929aa5c3f1989dfd41cd1d4bba9beed53a

  • SHA512

    e9c97a63c8eeb867f3e190518457eb8c4b7a0a775277f2f1aca7283b009e984bca18d5b9ba051d98aecb5377e356d0a3e707d3ae635be299748c4368ee407b3a

  • SSDEEP

    3072:P4mI+FjAHyxBxbHTBsuSYXUcgDmBvbjjqve4z4PtL2HUpOASklovCIlwl:PvI+FCyRHm3F6vbSveP40p7W3lw

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      2d1e6ba438d3d00b2203749d15de3e929aa5c3f1989dfd41cd1d4bba9beed53a

    • Size

      208KB

    • MD5

      254b03df553a127dfee43cd29e364b00

    • SHA1

      a613536eb89febb0b041bc6730bf0ea0f54f327a

    • SHA256

      2d1e6ba438d3d00b2203749d15de3e929aa5c3f1989dfd41cd1d4bba9beed53a

    • SHA512

      e9c97a63c8eeb867f3e190518457eb8c4b7a0a775277f2f1aca7283b009e984bca18d5b9ba051d98aecb5377e356d0a3e707d3ae635be299748c4368ee407b3a

    • SSDEEP

      3072:P4mI+FjAHyxBxbHTBsuSYXUcgDmBvbjjqve4z4PtL2HUpOASklovCIlwl:PvI+FCyRHm3F6vbSveP40p7W3lw

    Score
    8/10
    persistenceupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks