Overview

overview

8

Static

static

8

98a58e1b57...64.exe

windows7-x64

8

98a58e1b57...64.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    98a58e1b57f023daf125ce417e7d1c6cc1129bbce23445100c700efb6a86b664

  • Size

    31KB

  • Sample

    221203-s1x35sgd3v

  • MD5

    bdf23289aec26a05f1a4c82695171eff

  • SHA1

    22d41b8563f5409a981f5c2adab3e5a10d9108d9

  • SHA256

    98a58e1b57f023daf125ce417e7d1c6cc1129bbce23445100c700efb6a86b664

  • SHA512

    02e7335c2e926c247972d0119a594edd46d954d8dda114d3eede1ee0238803d0e8da9cbe9dacfea49c8266bfba49209150d44a354fcf1b3fa5cf6552befbaf67

  • SSDEEP

    768:CG4EagebJOJFCFlmCB7rEp3wUN38EmIT:CGXarJa+mC6p3wPElT

Score
8/10
evasionupx

Malware Config

Targets

    • Target

      98a58e1b57f023daf125ce417e7d1c6cc1129bbce23445100c700efb6a86b664

    • Size

      31KB

    • MD5

      bdf23289aec26a05f1a4c82695171eff

    • SHA1

      22d41b8563f5409a981f5c2adab3e5a10d9108d9

    • SHA256

      98a58e1b57f023daf125ce417e7d1c6cc1129bbce23445100c700efb6a86b664

    • SHA512

      02e7335c2e926c247972d0119a594edd46d954d8dda114d3eede1ee0238803d0e8da9cbe9dacfea49c8266bfba49209150d44a354fcf1b3fa5cf6552befbaf67

    • SSDEEP

      768:CG4EagebJOJFCFlmCB7rEp3wUN38EmIT:CGXarJa+mC6p3wPElT

    Score
    8/10
    evasionupx

    • Executes dropped EXE

    • Modifies Windows Firewall

      evasion

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks