Overview

overview

10

Static

static

10

3a63992bc8...ff.exe

windows7-x64

10

3a63992bc8...ff.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3a63992bc8760d45bd1e0887421fc7d510f490025109d5c1a7247d09ed2f14ff

  • Size

    2.5MB

  • Sample

    231023-kpcn3ahb97

  • MD5

    eaca518b1e134dcb313324dfe5be66fb

  • SHA1

    b4c66ccf5b67adb33ea9e6fa2c16e97f5d31f1df

  • SHA256

    3a63992bc8760d45bd1e0887421fc7d510f490025109d5c1a7247d09ed2f14ff

  • SHA512

    697513968490a072ab468b44b0e7e84f7480703b6d31d16db3d75be90b004d116ae57e1367e1d8ce436d48f661c193551a23716da1513577395d218d03296797

  • SSDEEP

    49152:RSnEknyUzsrkl5daDwXt8aHc68V/V7L1T:GDn3z0kUDwXtfH+5V1T

Score
10/10
r77rootkitupx

Malware Config

Targets

    • Target

      3a63992bc8760d45bd1e0887421fc7d510f490025109d5c1a7247d09ed2f14ff

    • Size

      2.5MB

    • MD5

      eaca518b1e134dcb313324dfe5be66fb

    • SHA1

      b4c66ccf5b67adb33ea9e6fa2c16e97f5d31f1df

    • SHA256

      3a63992bc8760d45bd1e0887421fc7d510f490025109d5c1a7247d09ed2f14ff

    • SHA512

      697513968490a072ab468b44b0e7e84f7480703b6d31d16db3d75be90b004d116ae57e1367e1d8ce436d48f661c193551a23716da1513577395d218d03296797

    • SSDEEP

      49152:RSnEknyUzsrkl5daDwXt8aHc68V/V7L1T:GDn3z0kUDwXtfH+5V1T

    Score
    10/10
    r77rootkitupx

    • r77

      r77 is an open-source, userland rootkit.

      rootkitr77

    • r77 rootkit payload

      Detects the payload of the r77 rootkit.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks