Overview

overview

7

Static

static

7

1a67f88162...64.exe

windows7-x64

7

1a67f88162...64.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1a67f881624db6efa36d334d1ca9d664

  • Size

    935KB

  • Sample

    231230-q1nhladhc4

  • MD5

    1a67f881624db6efa36d334d1ca9d664

  • SHA1

    0251e69ddd75388aabb8e01afcd411bcdc927315

  • SHA256

    e8e776f90b54a4e14b13e5d2fc77eee8c87e2324056fcd6c94ce73dadb652b4c

  • SHA512

    dd9d51a6b9bbf244d311b64f8fabafa19e952e3f19979d02a820b5c4be9f7f2b37110eab24efb08f71b0dca40e9de11cedde3e28833134c5e784d1c010ea4446

  • SSDEEP

    24576:nwlBrygOW3dlJ+2JNk+2JN6iSQALZXjgd:m5dlJnkneQAljgd

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      1a67f881624db6efa36d334d1ca9d664

    • Size

      935KB

    • MD5

      1a67f881624db6efa36d334d1ca9d664

    • SHA1

      0251e69ddd75388aabb8e01afcd411bcdc927315

    • SHA256

      e8e776f90b54a4e14b13e5d2fc77eee8c87e2324056fcd6c94ce73dadb652b4c

    • SHA512

      dd9d51a6b9bbf244d311b64f8fabafa19e952e3f19979d02a820b5c4be9f7f2b37110eab24efb08f71b0dca40e9de11cedde3e28833134c5e784d1c010ea4446

    • SSDEEP

      24576:nwlBrygOW3dlJ+2JNk+2JN6iSQALZXjgd:m5dlJnkneQAljgd

    Score
    7/10
    persistenceupx

    • Deletes itself

    • Drops startup file

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks