Overview

overview

8

Static

static

f884ffe133...46.exe

windows7-x64

8

f884ffe133...46.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    f884ffe1338c2ea651fbd750873dd4f17526f6c3dc2fd9c880abac0c10dc9246

  • Size

    620KB

  • Sample

    221204-d1vwfsce69

  • MD5

    b759a4d1a42684d23905491e0cf90c95

  • SHA1

    c5b4b25388b8bd3304e23fa8582e61dd962a17f1

  • SHA256

    f884ffe1338c2ea651fbd750873dd4f17526f6c3dc2fd9c880abac0c10dc9246

  • SHA512

    b443e70cfc563d61b82101c4d6ddaffee94726a3d816dd4adf2a6320c5bc3e443f7cbd6a5543ddfc7ca06284b7cd5a867ecd61dc905f2b3c3b647b9c435933f4

  • SSDEEP

    12288:4ZYmnKCyQBtIMBP93oO7unsVShtGVJIWtHQRF4cD3n8/7z+JcM5pMcuqabiX:yY+KCyQfI+V3oOXgXGVa4Gn8/Xd49JX

Score
8/10
discoveryupx

Malware Config

Targets

    • Target

      f884ffe1338c2ea651fbd750873dd4f17526f6c3dc2fd9c880abac0c10dc9246

    • Size

      620KB

    • MD5

      b759a4d1a42684d23905491e0cf90c95

    • SHA1

      c5b4b25388b8bd3304e23fa8582e61dd962a17f1

    • SHA256

      f884ffe1338c2ea651fbd750873dd4f17526f6c3dc2fd9c880abac0c10dc9246

    • SHA512

      b443e70cfc563d61b82101c4d6ddaffee94726a3d816dd4adf2a6320c5bc3e443f7cbd6a5543ddfc7ca06284b7cd5a867ecd61dc905f2b3c3b647b9c435933f4

    • SSDEEP

      12288:4ZYmnKCyQBtIMBP93oO7unsVShtGVJIWtHQRF4cD3n8/7z+JcM5pMcuqabiX:yY+KCyQfI+V3oOXgXGVa4Gn8/Xd49JX

    Score
    8/10
    discoveryupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Deletes itself

    • Loads dropped DLL

    • Modifies file permissions

      discovery

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks