Overview

overview

9

Static

static

9

f8b8ec56f9...bb.dll

windows7-x64

9

f8b8ec56f9...bb.dll

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f8b8ec56f9fe221b6da1d9fff8721997d22a9b3dc3bddba10bddd717e39498bb

  • Size

    34KB

  • Sample

    221206-zvy7ksda82

  • MD5

    0d9f1511263a1b7f7e5b90993e34e371

  • SHA1

    18066ad56d0c0a3cf6a475d9a336ebad2d8a5dc9

  • SHA256

    f8b8ec56f9fe221b6da1d9fff8721997d22a9b3dc3bddba10bddd717e39498bb

  • SHA512

    286b0087ff4286bb33491158f6686e4056e892e803b7f4391c45ed81b7cafc5570d75bc01c0d6fc39dda3ee8742a9e98c41b06ef1036fe8896271d28c9da5e43

  • SSDEEP

    768:Utew0FEJyPIBO44Pa/kvSnLrXihjLMX+dsYNnbcuyD7UJfq:UtByPj4+qL72j0csQnouy8Jfq

Score
9/10
upx

Malware Config

Targets

    • Target

      f8b8ec56f9fe221b6da1d9fff8721997d22a9b3dc3bddba10bddd717e39498bb

    • Size

      34KB

    • MD5

      0d9f1511263a1b7f7e5b90993e34e371

    • SHA1

      18066ad56d0c0a3cf6a475d9a336ebad2d8a5dc9

    • SHA256

      f8b8ec56f9fe221b6da1d9fff8721997d22a9b3dc3bddba10bddd717e39498bb

    • SHA512

      286b0087ff4286bb33491158f6686e4056e892e803b7f4391c45ed81b7cafc5570d75bc01c0d6fc39dda3ee8742a9e98c41b06ef1036fe8896271d28c9da5e43

    • SSDEEP

      768:Utew0FEJyPIBO44Pa/kvSnLrXihjLMX+dsYNnbcuyD7UJfq:UtByPj4+qL72j0csQnouy8Jfq

    Score
    9/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks