Overview

overview

8

Static

static

7

58b2858fdb...da.exe

windows7-x64

8

58b2858fdb...da.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    58b2858fdbda4ec08d3929c12a74b0da

  • Size

    64KB

  • Sample

    240113-mk32kahcf9

  • MD5

    58b2858fdbda4ec08d3929c12a74b0da

  • SHA1

    a36b66bc6f3cdbf0b024e340115f4b74527a458f

  • SHA256

    576aeeabf41fca19877fae09bae568357041c9e7a0a42fa9889243be3fb3edcc

  • SHA512

    414182fe9cddb874a402535b1d2a670843466da3d9c28c22e9b155228468d3d4af8d2a29c21c4565388484560131d04d82a4e3e33eab9ac6124106a88a3bf208

  • SSDEEP

    768:ae2mxDMm+STZ5UW0Z080t0M0+4ZfucVI4la7kYw4JUM3i/EhWoyiSq:txft5aucVI4la4YJUM3XhWoyG

Score
8/10
upx

Malware Config

Targets

    • Target

      58b2858fdbda4ec08d3929c12a74b0da

    • Size

      64KB

    • MD5

      58b2858fdbda4ec08d3929c12a74b0da

    • SHA1

      a36b66bc6f3cdbf0b024e340115f4b74527a458f

    • SHA256

      576aeeabf41fca19877fae09bae568357041c9e7a0a42fa9889243be3fb3edcc

    • SHA512

      414182fe9cddb874a402535b1d2a670843466da3d9c28c22e9b155228468d3d4af8d2a29c21c4565388484560131d04d82a4e3e33eab9ac6124106a88a3bf208

    • SSDEEP

      768:ae2mxDMm+STZ5UW0Z080t0M0+4ZfucVI4la7kYw4JUM3i/EhWoyiSq:txft5aucVI4la4YJUM3XhWoyG

    Score
    8/10
    upx

    • Drops file in Drivers directory

    • Manipulates Digital Signatures

      Attackers can apply techniques such as modifying certain DLL exports to make their binary seem valid.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks