Overview

overview

8

Static

static

7

0cf3ae8ba5...b6.exe

windows7-x64

8

0cf3ae8ba5...b6.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    0cf3ae8ba585480841ece01972ad5fb6

  • Size

    12KB

  • Sample

    231230-dz7hvsefa7

  • MD5

    0cf3ae8ba585480841ece01972ad5fb6

  • SHA1

    9a4a50fa8448438b8df3aa0c83be8f3381d1b4a1

  • SHA256

    4cc80b329165a9019188a58c2bd558436f61b8d067e1f8f3e675c0fede873a98

  • SHA512

    8cbcb587aa78d89a26ed897af342525d4c1f9fd32cb4f54c92b29ad6575e516ae7483502257d939c0d2c864a522a5cc8ea9fe15cabe17a5dd1bdab4ae1d8f38c

  • SSDEEP

    384:CuuGYYq/EjOmr5fDR3O3i1BjC7IxZCZcGtH9:CjFYq/EDr5Ds3i1SIxjGtH

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      0cf3ae8ba585480841ece01972ad5fb6

    • Size

      12KB

    • MD5

      0cf3ae8ba585480841ece01972ad5fb6

    • SHA1

      9a4a50fa8448438b8df3aa0c83be8f3381d1b4a1

    • SHA256

      4cc80b329165a9019188a58c2bd558436f61b8d067e1f8f3e675c0fede873a98

    • SHA512

      8cbcb587aa78d89a26ed897af342525d4c1f9fd32cb4f54c92b29ad6575e516ae7483502257d939c0d2c864a522a5cc8ea9fe15cabe17a5dd1bdab4ae1d8f38c

    • SSDEEP

      384:CuuGYYq/EjOmr5fDR3O3i1BjC7IxZCZcGtH9:CjFYq/EDr5Ds3i1SIxjGtH

    Score
    8/10
    persistenceupx

    • Modifies AppInit DLL entries

      persistence

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks