General

  • Target

    HexImageGrabber.exe

  • Size

    75.9MB

  • Sample

    231117-ylk3xsef3y

  • MD5

    8b41f40712845a61508a750c6091d674

  • SHA1

    92a4abe96b7e919fdf6d49904afc0c0f8f1f7216

  • SHA256

    9a1040044362f12d9cd7de0d3bd55a12d25e3ab2e312a69622119450635a150c

  • SHA512

    83858f282c2e2c21da41f6c23006fc67b9a4671af60c2de50052bba2427a3223e47f37f69657dc4f8d9660c73311a453f84d0561c8b6a4b018cdea27a8a3d4ab

  • SSDEEP

    1572864:K2MTiQYHxSk8IpG7V+VPhqaNE7LHpPWlXxTa9k4VTWFalmBwIYqX:KZTixRSkB05awakJe3Ty9VTyalmyIYq

Malware Config

Targets

    • Target

      HexImageGrabber.exe

    • Size

      75.9MB

    • MD5

      8b41f40712845a61508a750c6091d674

    • SHA1

      92a4abe96b7e919fdf6d49904afc0c0f8f1f7216

    • SHA256

      9a1040044362f12d9cd7de0d3bd55a12d25e3ab2e312a69622119450635a150c

    • SHA512

      83858f282c2e2c21da41f6c23006fc67b9a4671af60c2de50052bba2427a3223e47f37f69657dc4f8d9660c73311a453f84d0561c8b6a4b018cdea27a8a3d4ab

    • SSDEEP

      1572864:K2MTiQYHxSk8IpG7V+VPhqaNE7LHpPWlXxTa9k4VTWFalmBwIYqX:KZTixRSkB05awakJe3Ty9VTyalmyIYq

    Score
    9/10
    • Enumerates VirtualBox DLL files

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks