Overview

overview

7

Static

static

3

877_de.exe

windows7-x64

7

Resubmissions

25-04-2023 16:11

230425-tmxqwsdc6w 7

25-04-2023 15:53

230425-tbzq4sbc64 7

25-04-2023 14:27

230425-rsv35sag93 7

25-04-2023 14:26

230425-rrwchsag87 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    877_de.exe

  • Size

    45KB

  • Sample

    230425-tmxqwsdc6w

  • MD5

    6cda54d3bc470583ac95532119570ffe

  • SHA1

    37bb75119cf20d775265fc56dd9843e9a57fb205

  • SHA256

    923e95b7ca5559b47d2c12a4c75a540943266aa39cde60c3a629a95a6b85a0a3

  • SHA512

    65cc0e85931d237f92261be586a31e1e75963267ba6c518fbf55e6d5fa35c72f94fff5107e2d54c8d34dbf576a52861042e93601e1a136844ade5f98ad2089f2

  • SSDEEP

    768:3KHHfuj+ZHaIQB9uz7SXnJHw+NVTGzxpHWilnSFIy1DYVugsTTm8oZrzqJIEo1iN:aHK+ZHaTXNZOxpZTy1IsTTm84rzr1lNY

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      877_de.exe

    • Size

      45KB

    • MD5

      6cda54d3bc470583ac95532119570ffe

    • SHA1

      37bb75119cf20d775265fc56dd9843e9a57fb205

    • SHA256

      923e95b7ca5559b47d2c12a4c75a540943266aa39cde60c3a629a95a6b85a0a3

    • SHA512

      65cc0e85931d237f92261be586a31e1e75963267ba6c518fbf55e6d5fa35c72f94fff5107e2d54c8d34dbf576a52861042e93601e1a136844ade5f98ad2089f2

    • SSDEEP

      768:3KHHfuj+ZHaIQB9uz7SXnJHw+NVTGzxpHWilnSFIy1DYVugsTTm8oZrzqJIEo1iN:aHK+ZHaTXNZOxpZTy1IsTTm84rzr1lNY

    Score
    7/10
    persistenceupx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks