Overview

overview

8

Static

static

7

73daf0a889...78.exe

windows7-x64

8

73daf0a889...78.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    73daf0a8896a06e62e2137a6fc0d2c78

  • Size

    20KB

  • Sample

    240125-f6rgbshffp

  • MD5

    73daf0a8896a06e62e2137a6fc0d2c78

  • SHA1

    41de3ccbdcac7de696fee0534b6a24a2bea7e87e

  • SHA256

    cc715ea83d2b6384ae25f0c752ad325d3df60c31f4cb261fced161e29110b0d7

  • SHA512

    a785bf89cdcf56aa427e2bf05f919671ba5f7b5ea94dad21edcb8fd50f2c7ff7069d4f0ca0c48344bd94156c5a77972b8920e40bc1d8d88a366552239fe00081

  • SSDEEP

    384:KpxmHWyz9lAM37sdPI17lUhzaZVMEsW9ajygc3Q7LhPkT0:KHev9uPG7lpPZMWg6Q8I

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      73daf0a8896a06e62e2137a6fc0d2c78

    • Size

      20KB

    • MD5

      73daf0a8896a06e62e2137a6fc0d2c78

    • SHA1

      41de3ccbdcac7de696fee0534b6a24a2bea7e87e

    • SHA256

      cc715ea83d2b6384ae25f0c752ad325d3df60c31f4cb261fced161e29110b0d7

    • SHA512

      a785bf89cdcf56aa427e2bf05f919671ba5f7b5ea94dad21edcb8fd50f2c7ff7069d4f0ca0c48344bd94156c5a77972b8920e40bc1d8d88a366552239fe00081

    • SSDEEP

      384:KpxmHWyz9lAM37sdPI17lUhzaZVMEsW9ajygc3Q7LhPkT0:KHev9uPG7lpPZMWg6Q8I

    Score
    8/10
    persistenceupx

    • Drops file in Drivers directory

    • Modifies AppInit DLL entries

      persistence

    • Deletes itself

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks