Overview

overview

6

Static

static

3

overlaycrypt.exe

windows7-x64

6

overlaycrypt.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    overlaycrypt.exe

  • Size

    846KB

  • Sample

    230807-gz1l4afb81

  • MD5

    0f6ffc2e70d312972d592fd43d49b10c

  • SHA1

    1be29b9bf2da79e428f3e2ed95b25880b72cbc0c

  • SHA256

    7bcde76356cbd428ffd4fd3288f1f07d49db7d3d772b9671bfa2bb1f98a3ae17

  • SHA512

    71daeb9d2c213caf896a0cfcad6336c29e5c0645248fd26805ffa915ec69886639c704a4b3e1c6cd9c1412dbfff041d8efc7b60aeae69ae79a18aa81d0f4a600

  • SSDEEP

    12288:nByKFBp5YVGAVUOJNcTUW91MPSNZm6wZUkmLB7j/QFU0u0cql03za+9rSdfDG:EKrp5YoOJ41MCzwZU3LG9/2DayufD

Score
6/10
persistence

Malware Config

Targets

    • Target

      overlaycrypt.exe

    • Size

      846KB

    • MD5

      0f6ffc2e70d312972d592fd43d49b10c

    • SHA1

      1be29b9bf2da79e428f3e2ed95b25880b72cbc0c

    • SHA256

      7bcde76356cbd428ffd4fd3288f1f07d49db7d3d772b9671bfa2bb1f98a3ae17

    • SHA512

      71daeb9d2c213caf896a0cfcad6336c29e5c0645248fd26805ffa915ec69886639c704a4b3e1c6cd9c1412dbfff041d8efc7b60aeae69ae79a18aa81d0f4a600

    • SSDEEP

      12288:nByKFBp5YVGAVUOJNcTUW91MPSNZm6wZUkmLB7j/QFU0u0cql03za+9rSdfDG:EKrp5YoOJ41MCzwZU3LG9/2DayufD

    Score
    6/10
    persistence

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks