Overview

overview

8

Static

static

95a49c4dbd...0f.exe

windows7-x64

8

95a49c4dbd...0f.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    95a49c4dbdc41665cb0405706421795736921e094d7a49a0b57defbb8be5c80f

  • Size

    747KB

  • Sample

    221203-dfbl3scd6v

  • MD5

    6f5940a089fcc44b4eb26bdb253abca6

  • SHA1

    6b1140eee56abe16831775e759082a5d5b92d79d

  • SHA256

    95a49c4dbdc41665cb0405706421795736921e094d7a49a0b57defbb8be5c80f

  • SHA512

    9338ae380ad8400ff179b148c1569521cc7f60981cbcaf61bf2d6bde0040436b05a5efb30b7bd9808a36cb6ddd3b11c2358d00874a1901974295f7fd001536ce

  • SSDEEP

    12288:V1D6BL5eHT63w9vs+18D85BPXK1JWs7LoYfkbiMgo0pkkdKFQCoV0d6OzP/+Hiyv:zeF5eHTOun8D8owHmNoYvdzC5/Yiy

Score
8/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      95a49c4dbdc41665cb0405706421795736921e094d7a49a0b57defbb8be5c80f

    • Size

      747KB

    • MD5

      6f5940a089fcc44b4eb26bdb253abca6

    • SHA1

      6b1140eee56abe16831775e759082a5d5b92d79d

    • SHA256

      95a49c4dbdc41665cb0405706421795736921e094d7a49a0b57defbb8be5c80f

    • SHA512

      9338ae380ad8400ff179b148c1569521cc7f60981cbcaf61bf2d6bde0040436b05a5efb30b7bd9808a36cb6ddd3b11c2358d00874a1901974295f7fd001536ce

    • SSDEEP

      12288:V1D6BL5eHT63w9vs+18D85BPXK1JWs7LoYfkbiMgo0pkkdKFQCoV0d6OzP/+Hiyv:zeF5eHTOun8D8owHmNoYvdzC5/Yiy

    Score
    8/10
    discoverypersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks