Overview

overview

7

Static

static

7

ea0cf0a560...JC.exe

windows7-x64

7

ea0cf0a560...JC.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ea0cf0a560a8c73d543e3dc2c0be0746_JC.exe

  • Size

    476KB

  • Sample

    230918-xsp5saed79

  • MD5

    ea0cf0a560a8c73d543e3dc2c0be0746

  • SHA1

    c680dfd744d3537844193b611777c8f5ba5ac387

  • SHA256

    4b4069bc462e10031185e70d3a9fad2a266e708e1f2d55d3890e7442b0e2344f

  • SHA512

    305e5fe3028598ce67a451526866d6e1fcd85da4acdb697a38914abce3b44e3f1787c82b49cc2bcfaddf920b5e15f413d287be9e5a9993f69a686b11134d7a4d

  • SSDEEP

    6144:WdspDeDrxkg/vrMuJIgwhEFHyOrJcX/Pgqwzm5IzkWjS4e4azExBKO1t4Kb70Nqr:s8kxNhOZElO5kkWjhD4AI

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      ea0cf0a560a8c73d543e3dc2c0be0746_JC.exe

    • Size

      476KB

    • MD5

      ea0cf0a560a8c73d543e3dc2c0be0746

    • SHA1

      c680dfd744d3537844193b611777c8f5ba5ac387

    • SHA256

      4b4069bc462e10031185e70d3a9fad2a266e708e1f2d55d3890e7442b0e2344f

    • SHA512

      305e5fe3028598ce67a451526866d6e1fcd85da4acdb697a38914abce3b44e3f1787c82b49cc2bcfaddf920b5e15f413d287be9e5a9993f69a686b11134d7a4d

    • SSDEEP

      6144:WdspDeDrxkg/vrMuJIgwhEFHyOrJcX/Pgqwzm5IzkWjS4e4azExBKO1t4Kb70Nqr:s8kxNhOZElO5kkWjhD4AI

    Score
    7/10
    persistenceupx

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks