Overview

overview

8

Static

static

9e6746f182...8f.exe

windows7-x64

8

9e6746f182...8f.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    9e6746f1827343038020cf0d26807987eefb475ea2b92791e3fdf29cee06fa8f

  • Size

    412KB

  • Sample

    221204-pn6mzahd35

  • MD5

    256352a393b0748e161776130a8c234b

  • SHA1

    03087fa3a53882deca112cf418d398184a130ba5

  • SHA256

    9e6746f1827343038020cf0d26807987eefb475ea2b92791e3fdf29cee06fa8f

  • SHA512

    3af49818e53da24687cd82e6d55abea0b1aa0d13fe3d29cc0254ac4b89826fd29b9870e93ad087735bd269798c9426251bea8eaabe8f04932272e4d78e1763f6

  • SSDEEP

    6144:WL7pXGjmxNQrJm91lp/E+biqgvjf1dq0O/6bPnXRYSdRcZiWkJpacDeipQTgny/:Wxw6ilG1lpOqg77q0OIPHzUiW+rDI

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      9e6746f1827343038020cf0d26807987eefb475ea2b92791e3fdf29cee06fa8f

    • Size

      412KB

    • MD5

      256352a393b0748e161776130a8c234b

    • SHA1

      03087fa3a53882deca112cf418d398184a130ba5

    • SHA256

      9e6746f1827343038020cf0d26807987eefb475ea2b92791e3fdf29cee06fa8f

    • SHA512

      3af49818e53da24687cd82e6d55abea0b1aa0d13fe3d29cc0254ac4b89826fd29b9870e93ad087735bd269798c9426251bea8eaabe8f04932272e4d78e1763f6

    • SSDEEP

      6144:WL7pXGjmxNQrJm91lp/E+biqgvjf1dq0O/6bPnXRYSdRcZiWkJpacDeipQTgny/:Wxw6ilG1lpOqg77q0OIPHzUiW+rDI

    Score
    8/10
    persistenceupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Deletes itself

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks