Overview

overview

7

Static

static

3

SonarLoader.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SonarLoader.exe

  • Size

    17.7MB

  • Sample

    230422-vz9rnahf3w

  • MD5

    e91e68dfc644b263f505ff6701287e5c

  • SHA1

    d6f17682e65b5b83a93ecefb65c8785ace7d1a83

  • SHA256

    3ae27a7741a37b5ef68e56dcf589553c6e3516f9cf221a3491a7631f3c028887

  • SHA512

    0a192e2850196bdf45cf0b46512fb1e4b1e1470ac873f3ac48067bda858f24c6a7050ae88965c847eb9565b5624836f5d702c39c0b73bfdbadea8db5cfac84ff

  • SSDEEP

    393216:HqPnLFCU/3KiMuQpDOETgsvfG3n6qcoJya3:KPLFCUSGQoEwNy

Score
7/10
pyinstallerupx

Malware Config

Targets

    • Target

      SonarLoader.exe

    • Size

      17.7MB

    • MD5

      e91e68dfc644b263f505ff6701287e5c

    • SHA1

      d6f17682e65b5b83a93ecefb65c8785ace7d1a83

    • SHA256

      3ae27a7741a37b5ef68e56dcf589553c6e3516f9cf221a3491a7631f3c028887

    • SHA512

      0a192e2850196bdf45cf0b46512fb1e4b1e1470ac873f3ac48067bda858f24c6a7050ae88965c847eb9565b5624836f5d702c39c0b73bfdbadea8db5cfac84ff

    • SSDEEP

      393216:HqPnLFCU/3KiMuQpDOETgsvfG3n6qcoJya3:KPLFCUSGQoEwNy

    Score
    7/10
    upx

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks