Overview

overview

7

Static

static

7

49b0d888e2...26.exe

windows7-x64

7

49b0d888e2...26.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    49b0d888e217f8b200bf84c5d30d0526

  • Size

    3.2MB

  • Sample

    240107-zankcaeadr

  • MD5

    49b0d888e217f8b200bf84c5d30d0526

  • SHA1

    d799c267d0e9e3ca69a5ef03c9f870bddd538b3c

  • SHA256

    b1125bd83f5c098f10321f008362a5737e2bcf0fffa1bdfa9b3b6e297f94432d

  • SHA512

    2e79c7851aa871b67e751582e00f1fcd2e54ee961fc91de99e1e88e5da7d007a16fa80924fe9240452fe7633a140f8ae6200729e6a49636341325c1526dc6d3c

  • SSDEEP

    98304:DvZQ+WdSExVcakchS87ccakc5J1at2QucakchS87ccakcO:Dq7dSgdlhS87cdl5JskTdlhS87cdlO

Score
7/10
upx

Malware Config

Targets

    • Target

      49b0d888e217f8b200bf84c5d30d0526

    • Size

      3.2MB

    • MD5

      49b0d888e217f8b200bf84c5d30d0526

    • SHA1

      d799c267d0e9e3ca69a5ef03c9f870bddd538b3c

    • SHA256

      b1125bd83f5c098f10321f008362a5737e2bcf0fffa1bdfa9b3b6e297f94432d

    • SHA512

      2e79c7851aa871b67e751582e00f1fcd2e54ee961fc91de99e1e88e5da7d007a16fa80924fe9240452fe7633a140f8ae6200729e6a49636341325c1526dc6d3c

    • SSDEEP

      98304:DvZQ+WdSExVcakchS87ccakc5J1at2QucakchS87ccakcO:Dq7dSgdlhS87cdl5JskTdlhS87cdlO

    Score
    7/10
    upx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks