Overview

overview

7

Static

static

3

GTGInBlack.exe

windows7-x64

7

GTGInBlack.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    GTGInBlack.exe

  • Size

    20.5MB

  • Sample

    230525-wqhr9abf49

  • MD5

    b59bfd444c21c72f128ec4c54ee41052

  • SHA1

    ba71d4a365263f3546034c95a7db08e440da904d

  • SHA256

    4f5c3cd65a66cb7d0c6702919fcdf555db2db8f6e9dddec41aac709f6c0d502d

  • SHA512

    eb9407052351262d828b923605632ae0703ce5c1f8d5900f011cd283aac1de757897b498090b3a04d68a4559a690236001cd1189e01d1dba254a4f0bf8d829f9

  • SSDEEP

    393216:hqPnLFXlodzrzlIBRPQDCSiGZ3gMLPPJ6Zj6ydAQsVqD:IPLFXCdzrUPQm2bDoN/D

Score
7/10
pyinstallerupx

Malware Config

Targets

    • Target

      GTGInBlack.exe

    • Size

      20.5MB

    • MD5

      b59bfd444c21c72f128ec4c54ee41052

    • SHA1

      ba71d4a365263f3546034c95a7db08e440da904d

    • SHA256

      4f5c3cd65a66cb7d0c6702919fcdf555db2db8f6e9dddec41aac709f6c0d502d

    • SHA512

      eb9407052351262d828b923605632ae0703ce5c1f8d5900f011cd283aac1de757897b498090b3a04d68a4559a690236001cd1189e01d1dba254a4f0bf8d829f9

    • SSDEEP

      393216:hqPnLFXlodzrzlIBRPQDCSiGZ3gMLPPJ6Zj6ydAQsVqD:IPLFXCdzrUPQm2bDoN/D

    Score
    7/10
    upx

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks