Overview

overview

7

Static

static

7

068c2a6afb...a2.exe

windows7-x64

7

068c2a6afb...a2.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    068c2a6afb2c2e389aaa3b15f61b09a2

  • Size

    679KB

  • Sample

    231225-fnmenachf4

  • MD5

    068c2a6afb2c2e389aaa3b15f61b09a2

  • SHA1

    29065fcacc5001e9c1ce920dc61c1da0ff0d8ce1

  • SHA256

    140d42ca66c02ff8ed41be8d17d2842a8e0b827a76ab7100ddea1481412207fa

  • SHA512

    af58d75daa6f2840f7a417e318a4d3e522d85e28cfc5ce1f2bc62c7198e211be5f0f4e0561b3fc624cb7a4786314bfa42509d8feb326d20940315bb1f8542cc8

  • SSDEEP

    12288:BRO2Q8Iu71MZvr2ymO6l4S+obhFIVgFmO/oG3G+zQmS+Lrv7KXpQB9EzDk8BAZ0l:Hm88Kjh4SnbMKFmO/osPTS8v7KXpQBqN

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      068c2a6afb2c2e389aaa3b15f61b09a2

    • Size

      679KB

    • MD5

      068c2a6afb2c2e389aaa3b15f61b09a2

    • SHA1

      29065fcacc5001e9c1ce920dc61c1da0ff0d8ce1

    • SHA256

      140d42ca66c02ff8ed41be8d17d2842a8e0b827a76ab7100ddea1481412207fa

    • SHA512

      af58d75daa6f2840f7a417e318a4d3e522d85e28cfc5ce1f2bc62c7198e211be5f0f4e0561b3fc624cb7a4786314bfa42509d8feb326d20940315bb1f8542cc8

    • SSDEEP

      12288:BRO2Q8Iu71MZvr2ymO6l4S+obhFIVgFmO/oG3G+zQmS+Lrv7KXpQB9EzDk8BAZ0l:Hm88Kjh4SnbMKFmO/osPTS8v7KXpQBqN

    Score
    7/10
    discoveryupx

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks