Overview

overview

7

Static

static

7

Urgente.exe

windows7-x64

7

Urgente.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    31104f44dc01cfeda9b1eb060111822b

  • Size

    656KB

  • Sample

    231225-v3s83secdn

  • MD5

    31104f44dc01cfeda9b1eb060111822b

  • SHA1

    c1580f791dae5a0a22fa87e90ed7f3051398c610

  • SHA256

    7c5bd21ca2ad225ef561820572d95a6b388119a85073614c1ae38696d24c96ee

  • SHA512

    77b6639ad6f00893a0e2e9596d42bdbe771a18974abaebd4ace53951f9c5eb34600cbf69ebbcf17c85caa559cd2a40ba0f4970cdcdc834558caa8ce08b5b7610

  • SSDEEP

    12288:mA819a7jIg5a5at3U1XUKZo+70eEETfie2WJ4xdV5EfRd6icY+GtTA3ZFMQ:mA8jqIgae2HqfYTfitvdzJikxl

Score
7/10
evasionthemida

Malware Config

Targets

    • Target

      Urgente.exe

    • Size

      669KB

    • MD5

      0e94934dbdd82757f5e0fd9c9d832906

    • SHA1

      15124814a6df2b716115f409a5bf2898bf9057e1

    • SHA256

      c41a66ee90f94dbb379ba16c3f4b74390e08f57cdc6a5fbe273ace31abec26c4

    • SHA512

      a7861b8a14f4cc8e21fd1df2a4e1bb196a8c4d3b5877ba0745faddfb0a2c49100cbe1e478531ca25e48792d74f3c2f2efd5fda58dd68992ad37d485fa63c73d2

    • SSDEEP

      12288:ow3aSyyfdR5/hXJXfxtDkAJ7AUIyNVEDvaTc3NP5hNmEKr:oXSyYdR5ZXJ/DkI7NIZ3NP5rF

    Score
    7/10
    evasionthemida

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

      evasion

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

      themida

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks