Overview

overview

7

Static

static

3

28deba1100...a4.exe

windows7-x64

7

28deba1100...a4.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    28deba110030ad33affb6b7426fb92a4

  • Size

    449KB

  • Sample

    231231-fgnddaheb9

  • MD5

    28deba110030ad33affb6b7426fb92a4

  • SHA1

    5145c3ebb72549ca81f60aaa4d3ae005009e1a88

  • SHA256

    08b4ed488f3d5f93dd8688d0091c22f318dad3653131525f4fcfde14f36f5b5a

  • SHA512

    9bfdeda44ddf7741608c7fad8705fe230d340186835de5e8112e1f8188f0fe9845dc2b1aba2801c3d40c2f4d87ea4eff0ba4dd6e4db8a1aea9ac9cfb892de3fb

  • SSDEEP

    12288:X8S3GmHL6DpnsPOWJ2qiObww/gIjpXTiv2:MS3hr2sGzg0ITu

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      28deba110030ad33affb6b7426fb92a4

    • Size

      449KB

    • MD5

      28deba110030ad33affb6b7426fb92a4

    • SHA1

      5145c3ebb72549ca81f60aaa4d3ae005009e1a88

    • SHA256

      08b4ed488f3d5f93dd8688d0091c22f318dad3653131525f4fcfde14f36f5b5a

    • SHA512

      9bfdeda44ddf7741608c7fad8705fe230d340186835de5e8112e1f8188f0fe9845dc2b1aba2801c3d40c2f4d87ea4eff0ba4dd6e4db8a1aea9ac9cfb892de3fb

    • SSDEEP

      12288:X8S3GmHL6DpnsPOWJ2qiObww/gIjpXTiv2:MS3hr2sGzg0ITu

    Score
    7/10
    persistenceupx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks