Overview

overview

10

Static

static

8

b909e861f2...67.exe

windows7-x64

10

b909e861f2...67.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    b909e861f2c9d536b041da96291ee701598f066b7df20a480924f8c87b263a67

  • Size

    107KB

  • Sample

    221203-m6s4gshc7v

  • MD5

    f3935e4733251af289e4ac8954e34443

  • SHA1

    b07573ea53ef7629007ff77bb6109a0803d86cb1

  • SHA256

    b909e861f2c9d536b041da96291ee701598f066b7df20a480924f8c87b263a67

  • SHA512

    4feed8240b4c3fd800d284e2a06b5485f89c02761ca4d321d038a6e752cf2904a030a607c6d0ce4a7d07d9a2487495237b8b8d153476b41eb4291ce46fb9daec

  • SSDEEP

    3072:0T+Kx1nZ0vZZ86MnQvJVQEtBMFimze3YCqdJGz3GLhQUbP1z8hc:ZKHZA86MnQvJVQEtBMFimze3YCqdJGz1

Score
10/10
evasionpersistenceupx

Malware Config

Targets

    • Target

      b909e861f2c9d536b041da96291ee701598f066b7df20a480924f8c87b263a67

    • Size

      107KB

    • MD5

      f3935e4733251af289e4ac8954e34443

    • SHA1

      b07573ea53ef7629007ff77bb6109a0803d86cb1

    • SHA256

      b909e861f2c9d536b041da96291ee701598f066b7df20a480924f8c87b263a67

    • SHA512

      4feed8240b4c3fd800d284e2a06b5485f89c02761ca4d321d038a6e752cf2904a030a607c6d0ce4a7d07d9a2487495237b8b8d153476b41eb4291ce46fb9daec

    • SSDEEP

      3072:0T+Kx1nZ0vZZ86MnQvJVQEtBMFimze3YCqdJGz3GLhQUbP1z8hc:ZKHZA86MnQvJVQEtBMFimze3YCqdJGz1

    Score
    10/10
    evasionpersistenceupx

    • Modifies visiblity of hidden/system files in Explorer

      evasion

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks