Overview

overview

8

Static

static

7

2d969c9496...36.exe

windows7-x64

8

2d969c9496...36.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2d969c9496c92583010fa68f13e59336

  • Size

    55KB

  • Sample

    231225-t3fsbagaer

  • MD5

    2d969c9496c92583010fa68f13e59336

  • SHA1

    7fd226cc4aea5960998412d813621b62cd95db88

  • SHA256

    e686be5a3a9da510c16dd94696834916b2522514dc22f9672a97d86b13420ac7

  • SHA512

    4604a35a66bba0aa02194508cbc1fe0f00cd83b1b593711ddeaf1f7340c1bbc406d1abe0c17d3d3b1058c0d676ed4eece329c911848dc1e71993f9e07720eb47

  • SSDEEP

    1536:OeyCfVD9fFDg9UZup76pCyTJT8cIl9nMFRnM:MwD9dDX26p8czc

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      2d969c9496c92583010fa68f13e59336

    • Size

      55KB

    • MD5

      2d969c9496c92583010fa68f13e59336

    • SHA1

      7fd226cc4aea5960998412d813621b62cd95db88

    • SHA256

      e686be5a3a9da510c16dd94696834916b2522514dc22f9672a97d86b13420ac7

    • SHA512

      4604a35a66bba0aa02194508cbc1fe0f00cd83b1b593711ddeaf1f7340c1bbc406d1abe0c17d3d3b1058c0d676ed4eece329c911848dc1e71993f9e07720eb47

    • SSDEEP

      1536:OeyCfVD9fFDg9UZup76pCyTJT8cIl9nMFRnM:MwD9dDX26p8czc

    Score
    8/10
    persistenceupx

    • Sets service image path in registry

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks