Overview

overview

8

Static

static

8

ae3053cc0c...9a.exe

windows7-x64

8

ae3053cc0c...9a.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    ae3053cc0c3b15cb42c8e56a68083f66012556738b7b1cb6a67c6f3bf2f2b99a

  • Size

    457KB

  • Sample

    221205-k2faqahf7t

  • MD5

    f629c745e277c172005fecc38070e05d

  • SHA1

    e173c0ff049c9980f6e517319fe1af398f110a21

  • SHA256

    ae3053cc0c3b15cb42c8e56a68083f66012556738b7b1cb6a67c6f3bf2f2b99a

  • SHA512

    2b5c97cc91ab939d69d10016644592f932a2d8f280ae036a949a75102cabcbb25d0f3e11801919e97602ea54f809f7c0c7645973d91644aefe63e70cd83b2e22

  • SSDEEP

    6144:NhgW0/z9DGlwfHpdr9MRJIKQpKSdI9TzFm98P3runtxkuIoqIYu6ToStijzkmm:deWwBdcJIbpKSKP3rungLoSszk

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      ae3053cc0c3b15cb42c8e56a68083f66012556738b7b1cb6a67c6f3bf2f2b99a

    • Size

      457KB

    • MD5

      f629c745e277c172005fecc38070e05d

    • SHA1

      e173c0ff049c9980f6e517319fe1af398f110a21

    • SHA256

      ae3053cc0c3b15cb42c8e56a68083f66012556738b7b1cb6a67c6f3bf2f2b99a

    • SHA512

      2b5c97cc91ab939d69d10016644592f932a2d8f280ae036a949a75102cabcbb25d0f3e11801919e97602ea54f809f7c0c7645973d91644aefe63e70cd83b2e22

    • SSDEEP

      6144:NhgW0/z9DGlwfHpdr9MRJIKQpKSdI9TzFm98P3runtxkuIoqIYu6ToStijzkmm:deWwBdcJIbpKSKP3rungLoSszk

    Score
    8/10
    persistenceupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Deletes itself

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks