Overview

overview

8

Static

static

7

675dc0091b...08.exe

windows7-x64

8

675dc0091b...08.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    675dc0091bbd2d0830ef7cc98f7eec08

  • Size

    163KB

  • Sample

    240119-mctg6acfb4

  • MD5

    675dc0091bbd2d0830ef7cc98f7eec08

  • SHA1

    d1d4f8e5b1a2206a13d4a4bba9d728c1629e70e0

  • SHA256

    a54db06a37d70edab54b3aa064fc587242d7291f37c2e92945872e303529a1ed

  • SHA512

    e3013a7f962d8ee074f4e0d8fbbdcea8dd6d4564ff8fd203c0b3f7372df5d8ce943fc72281d2ea335a7d41c82a62c028e8cee788707608c7fd429762df7c8cc4

  • SSDEEP

    3072:ESoTORDpRJVL5fwwQN2PBZERu9AZaScWONG:ESoTOnVL5fhQN2J+RuWoN

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      675dc0091bbd2d0830ef7cc98f7eec08

    • Size

      163KB

    • MD5

      675dc0091bbd2d0830ef7cc98f7eec08

    • SHA1

      d1d4f8e5b1a2206a13d4a4bba9d728c1629e70e0

    • SHA256

      a54db06a37d70edab54b3aa064fc587242d7291f37c2e92945872e303529a1ed

    • SHA512

      e3013a7f962d8ee074f4e0d8fbbdcea8dd6d4564ff8fd203c0b3f7372df5d8ce943fc72281d2ea335a7d41c82a62c028e8cee788707608c7fd429762df7c8cc4

    • SSDEEP

      3072:ESoTORDpRJVL5fwwQN2PBZERu9AZaScWONG:ESoTOnVL5fhQN2J+RuWoN

    Score
    8/10
    persistenceupx

    • Adds policy Run key to start application

      persistence

    • Drops file in Drivers directory

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks