Overview

overview

10

Static

static

7

Planilha.exe

windows7-x64

10

Planilha.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    2513ac92d2d5280e31d264c53f3e271d

  • Size

    255KB

  • Sample

    231231-c97qyacge4

  • MD5

    2513ac92d2d5280e31d264c53f3e271d

  • SHA1

    8c4006d50ecf4094bfeb65ecf70d2e273750e4d7

  • SHA256

    fcf778f5b06e49d9c559263c2fbaf78cb99ab8aba6c36e220947421c2f65222b

  • SHA512

    8b856d73086c35216f65e59287c4568dcbf248f18deb4b68a1ed0c08c889329059289ee5e808b90125e2b720c1b1b9332aa72f81116fc0884c78a1a3199a83ee

  • SSDEEP

    6144:tdGYPe/4A4SoDExM3HUoKPL5QAfr6igQwvNWuxp5TtHTDl:tdPe/uS5xM3nifrfgBVhTT1Dl

Score
10/10
evasiontrojanupx

Malware Config

Targets

    • Target

      Planilha.exe

    • Size

      263KB

    • MD5

      5840e69650c2361c465d284edd1dd5d9

    • SHA1

      879b149d38f9377a434ab6cc9ecae5691a5d6abc

    • SHA256

      8547e199fcdacc50a0b52d1af6eef0e89836c210b098b9d524358130539b96cd

    • SHA512

      35f99f89cf48100418a63e8b2e39bcc0ca12f4a73657509784416e3d7e3a0ce9de854f7f54bd040181791d3ff619b7c3b3155a0ea7db6228c48e62cb95869b8f

    • SSDEEP

      6144:UZ8XtlweS/L6nhh7X7MWIa9tKajpojBRSYYrdKa60m8gfERjL3O:u8XtpSD6hh7X7MVsDjpeDP4gigs

    Score
    10/10
    evasiontrojanupx

    • Modifies visibility of file extensions in Explorer

      evasion

    • UAC bypass

      evasiontrojan

    • Windows security bypass

      evasiontrojan

    • Drops startup file

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Windows security modification

      evasiontrojan

    • Checks whether UAC is enabled

      evasiontrojan
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks