Overview

overview

7

Static

static

7

EyeGuard.exe

windows7-x64

7

EyeGuard.exe

windows10-2004-x64

7

EyeGuardHook.dll

windows7-x64

1

EyeGuardHook.dll

windows10-2004-x64

1

非常世�...��.url

windows7-x64

1

非常世�...��.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    749f91470c79a549ef8c61eac5446738

  • Size

    30KB

  • Sample

    240125-nxm2jsfggq

  • MD5

    749f91470c79a549ef8c61eac5446738

  • SHA1

    5f3a4192e4a615b69f3ce0eb4759e3377b1f3e6c

  • SHA256

    a75ea5f6efeb267bd3928fa665007eaba15e710a12db4926fceea5e42c3d85d2

  • SHA512

    c769745760d01edf515a48eea7283bded8c3a5f522b6f83e5b48ec9bd9196b01fa4eba5fb76977bbfd251ceac81b338b027f6020ecc13daa08f206edc3b2278f

  • SSDEEP

    768:1Hv/ignpRkAi6DCPxF7PtwvQWuQwxPh0W4Kagk8xscYyZZ2WHwI:1Hv/ignXkR6DOFa85xZ0W4Hqxsf+Z2Wp

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      EyeGuard.exe

    • Size

      23KB

    • MD5

      e2d674b20ea4ef7f25b874a5d529ba81

    • SHA1

      991c053b20552c34d57040b0da9e2268cc0ba21f

    • SHA256

      7606c778f140aa6ef1a19cab39b8f471b4202fd82ec90df5a337c928f84fb8c1

    • SHA512

      974ffeff1413387773cfaf12384f859c2296f3d8904224d446c0364876f35c59bd0309ec5c5e83166b0f3350cdf00d8e7146b879b2d2856108dee2b341edb4c8

    • SSDEEP

      384:cb9tEfJcy14q6ApwXqOL+J8ic8lolwRL9vGwiXfLwq76MqgyuxyLnFje:cp+fnRjsqOticteSw8fcquMqKoLFj

    Score
    7/10
    persistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

    • Target

      EyeGuardHook.dll

    • Size

      6KB

    • MD5

      66659cf2a350751e44da1048c44293aa

    • SHA1

      29b4edfb38ae53e37281562dd853f7645ea6395a

    • SHA256

      8a5c17a3adac00b4a623653b19b76de3077d45cdf0c610462c527768a40976ab

    • SHA512

      e2467f79ddc4ea7cb5691cba4d29edeadb1ca4975b60ed0fd64154961647599e56a4551beb5038d29b4f2234429963be8969be13b5f70e85ff810de0d2bddc6d

    • SSDEEP

      48:SknQMyFktKe7NRfVLf59vngezntt0GWIDikbOKX0MwQsF9bP1cy4lu31mrwhI:rnbh7gOtt0GWIGkbOKXBG3bPT3RhI

    Score
    1/10
    behavioral3behavioral4

    • Target

      非常世纪资源网.url

    • Size

      261B

    • MD5

      7224ffb934111a8809741992c978930c

    • SHA1

      b5f6b76e4e4ffdd4949a882bba0ccfccc2cc6281

    • SHA256

      9f9d03e353424674de5a5bbbdbcdc2d02554eb6f50fa204de5ee4d5d6ec6b772

    • SHA512

      5a4bcd91cc685ebeeb40964a5db0b95b0bab0de37cc2367ee5862bc4908a9be5144d82e39c8a4f539ac9ab6f6ffeae039ffa6bf65ba15105d390c81d999672cd

    Score
    1/10
    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks