Overview

overview

8

Static

static

b960925e25...b4.exe

windows7-x64

8

b960925e25...b4.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    b960925e25825dfeb84a17f38fe323b977ec18c102934e599f31c7ae452ac8b4

  • Size

    758KB

  • Sample

    221203-rt6ahahb53

  • MD5

    a7226c8a701f698f44a7ca8052f08b0f

  • SHA1

    858892895f3411a499d3064942ee50efd7c5122c

  • SHA256

    b960925e25825dfeb84a17f38fe323b977ec18c102934e599f31c7ae452ac8b4

  • SHA512

    3aca3c84e9198d781e3c7bf379c83445ce59c54c498e3852935de92f999cfd53fb6ef956bd368272b01ffe212f76d5657e7cd7021f5acc06f35be9a5fd1de43f

  • SSDEEP

    12288:Z2/NcXgTxYChjKrhGv/DYbdjoFTT5ToPSlvexl/flAF9zLl:U/KXiFh2rhM/Eb18T5sSJKl/mF9Ll

Score
8/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      b960925e25825dfeb84a17f38fe323b977ec18c102934e599f31c7ae452ac8b4

    • Size

      758KB

    • MD5

      a7226c8a701f698f44a7ca8052f08b0f

    • SHA1

      858892895f3411a499d3064942ee50efd7c5122c

    • SHA256

      b960925e25825dfeb84a17f38fe323b977ec18c102934e599f31c7ae452ac8b4

    • SHA512

      3aca3c84e9198d781e3c7bf379c83445ce59c54c498e3852935de92f999cfd53fb6ef956bd368272b01ffe212f76d5657e7cd7021f5acc06f35be9a5fd1de43f

    • SSDEEP

      12288:Z2/NcXgTxYChjKrhGv/DYbdjoFTT5ToPSlvexl/flAF9zLl:U/KXiFh2rhM/Eb18T5sSJKl/mF9Ll

    Score
    8/10
    discoverypersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks