Overview

overview

8

Static

static

1

16a1f72dfa...86.dll

windows7-x64

7

16a1f72dfa...86.dll

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    16a1f72dfa9eab85603db66295bc1186

  • Size

    281KB

  • Sample

    231224-2npqnsfbhm

  • MD5

    16a1f72dfa9eab85603db66295bc1186

  • SHA1

    55f6ec8d68287cb8ea9b3bfd6bc6c9786d03a2ae

  • SHA256

    157d546a7d84ff9cad620083cab6e0798008f2d0a3a39c919ebdc0c28b638d53

  • SHA512

    9afe110ed38d84b0237f22b84ab5ef8bedb6b4564f78a1fccb299039975ea61b40df75b8228b148f7a7f70c47adb4b4729f9c684c47788e354563077a93f70a0

  • SSDEEP

    6144:PBwX+vLpehzMg64adKxTVsQvMRlkM4RD/qzMfUZ:PsvzW43LMRGM4h/qof8

Score
8/10
upx

Malware Config

Targets

    • Target

      16a1f72dfa9eab85603db66295bc1186

    • Size

      281KB

    • MD5

      16a1f72dfa9eab85603db66295bc1186

    • SHA1

      55f6ec8d68287cb8ea9b3bfd6bc6c9786d03a2ae

    • SHA256

      157d546a7d84ff9cad620083cab6e0798008f2d0a3a39c919ebdc0c28b638d53

    • SHA512

      9afe110ed38d84b0237f22b84ab5ef8bedb6b4564f78a1fccb299039975ea61b40df75b8228b148f7a7f70c47adb4b4729f9c684c47788e354563077a93f70a0

    • SSDEEP

      6144:PBwX+vLpehzMg64adKxTVsQvMRlkM4RD/qzMfUZ:PsvzW43LMRGM4h/qof8

    Score
    8/10
    upx

    • Blocklisted process makes network request

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks