Overview

overview

8

Static

static

1

b39946f00d...9d.exe

windows7-x64

8

b39946f00d...9d.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b39946f00dc4a55f5d92049103063d1b4005deaa9c5fa46dd6061f1e2a02d89d

  • Size

    234KB

  • Sample

    231229-ekvfesfec3

  • MD5

    0ee2ac0bb04a6ea0bb8f219b513cd29b

  • SHA1

    291152273828398a3b7902f7b2c3690ad486ccf6

  • SHA256

    b39946f00dc4a55f5d92049103063d1b4005deaa9c5fa46dd6061f1e2a02d89d

  • SHA512

    d4adb004136781bdcac6139cb2ee97ac3bfd07b8a881a81459db5921c2f0502262ba527a214704a4de49d38fd877278ebedae71dad9d3726f6350e0e9dafa4ec

  • SSDEEP

    3072:NwzvOYVn5YPiq/DvbEvK9aobNI2B+ylIHfSXwyVyjZTW1xk9ZoCV4iOphJWrP92/:qniPiGh9H/B+/9BV+UdvrEFp7hKSp3

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      b39946f00dc4a55f5d92049103063d1b4005deaa9c5fa46dd6061f1e2a02d89d

    • Size

      234KB

    • MD5

      0ee2ac0bb04a6ea0bb8f219b513cd29b

    • SHA1

      291152273828398a3b7902f7b2c3690ad486ccf6

    • SHA256

      b39946f00dc4a55f5d92049103063d1b4005deaa9c5fa46dd6061f1e2a02d89d

    • SHA512

      d4adb004136781bdcac6139cb2ee97ac3bfd07b8a881a81459db5921c2f0502262ba527a214704a4de49d38fd877278ebedae71dad9d3726f6350e0e9dafa4ec

    • SSDEEP

      3072:NwzvOYVn5YPiq/DvbEvK9aobNI2B+ylIHfSXwyVyjZTW1xk9ZoCV4iOphJWrP92/:qniPiGh9H/B+/9BV+UdvrEFp7hKSp3

    Score
    8/10
    persistenceupx

    • Modifies AppInit DLL entries

      persistence

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks