Overview

overview

9

Static

static

9

a8b3dadec5...db.dll

windows7-x64

9

a8b3dadec5...db.dll

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    a8b3dadec53c421db3dc4ee596de3971031dbe4b6713605ff97bad2372329adb

  • Size

    39KB

  • Sample

    221204-a94ceagc5s

  • MD5

    44f355ce69dc23d196930d199a96e230

  • SHA1

    884e761879c4f6c003268f8ab9c79d59e4e19569

  • SHA256

    a8b3dadec53c421db3dc4ee596de3971031dbe4b6713605ff97bad2372329adb

  • SHA512

    c7330533ab132a81619cf11fe16e611d54d44d5b0031cb58f8bb76fda300093b869d5693375270611e2d223ab936f2a00db35137449787165d4b8bc1a3fe50a0

  • SSDEEP

    768:qOQz5gWq/XHlLC4wHu2eCJmfIDF4qGfgt76IZl3MO+/sd6xHSqtEnbcuyD7UB:M5gWEVe4wHu2e85JeIRZl3MOvDqOnouL

Score
9/10
upx

Malware Config

Targets

    • Target

      a8b3dadec53c421db3dc4ee596de3971031dbe4b6713605ff97bad2372329adb

    • Size

      39KB

    • MD5

      44f355ce69dc23d196930d199a96e230

    • SHA1

      884e761879c4f6c003268f8ab9c79d59e4e19569

    • SHA256

      a8b3dadec53c421db3dc4ee596de3971031dbe4b6713605ff97bad2372329adb

    • SHA512

      c7330533ab132a81619cf11fe16e611d54d44d5b0031cb58f8bb76fda300093b869d5693375270611e2d223ab936f2a00db35137449787165d4b8bc1a3fe50a0

    • SSDEEP

      768:qOQz5gWq/XHlLC4wHu2eCJmfIDF4qGfgt76IZl3MO+/sd6xHSqtEnbcuyD7UB:M5gWEVe4wHu2e85JeIRZl3MOvDqOnouL

    Score
    9/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks