Overview

overview

7

Static

static

7

0f4120251f...93.exe

windows7-x64

7

0f4120251f...93.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    0f4120251f54ac6c561ef3061dfd3793

  • Size

    768KB

  • Sample

    231225-je9elsdbcp

  • MD5

    0f4120251f54ac6c561ef3061dfd3793

  • SHA1

    6dc0bd3a5a9166fcc2afd714bdf6047b11e47aad

  • SHA256

    53aa7b95790d4dbcb4ef2b1c7c1653768ff45ce7c7bafc2b4ac0583acfcb35be

  • SHA512

    a43a432e156d2a833abe14c26067976992c13275364d1115c03b7ffe7617aa7e24e1c26bb7babf66ea1a97bf8c68ec04101fea6e102cdbced08c2121ca2c2a24

  • SSDEEP

    12288:rbpHYUKy5U1bo9t8DMRSW9vbciUiLuAvOxMt11i27QitjGLV:r5sJo6YrFUiyAak11LtjGLV

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      0f4120251f54ac6c561ef3061dfd3793

    • Size

      768KB

    • MD5

      0f4120251f54ac6c561ef3061dfd3793

    • SHA1

      6dc0bd3a5a9166fcc2afd714bdf6047b11e47aad

    • SHA256

      53aa7b95790d4dbcb4ef2b1c7c1653768ff45ce7c7bafc2b4ac0583acfcb35be

    • SHA512

      a43a432e156d2a833abe14c26067976992c13275364d1115c03b7ffe7617aa7e24e1c26bb7babf66ea1a97bf8c68ec04101fea6e102cdbced08c2121ca2c2a24

    • SSDEEP

      12288:rbpHYUKy5U1bo9t8DMRSW9vbciUiLuAvOxMt11i27QitjGLV:r5sJo6YrFUiyAak11LtjGLV

    Score
    7/10
    persistenceupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks