Overview

overview

7

Static

static

7

7fc1d0b73a...28.exe

windows7-x64

7

7fc1d0b73a...28.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7fc1d0b73a0003f8da7c2434259d8b28

  • Size

    238KB

  • Sample

    240129-nxh3laaefr

  • MD5

    7fc1d0b73a0003f8da7c2434259d8b28

  • SHA1

    f91b4ffc50e11fc13884c98aa303973fb29039dd

  • SHA256

    45cdf5841c2fa78cc444a0926fd3b9e7fab51d061988c45bc894ebb09991bc5d

  • SHA512

    68475d89314d4273af8c01e5c71d39230d2c3fcb2d53048ed003d44d63f8270d9f8cd0c4858fad778ea0c460adf42c3e6f4aef7b255c09b717e84ce8b5d58db9

  • SSDEEP

    6144:tB27VZ3oMfRczHKW826U0l78ajUdsB+sBT:tBev4wRg7E8KUOFB

Score
7/10
upx

Malware Config

Targets

    • Target

      7fc1d0b73a0003f8da7c2434259d8b28

    • Size

      238KB

    • MD5

      7fc1d0b73a0003f8da7c2434259d8b28

    • SHA1

      f91b4ffc50e11fc13884c98aa303973fb29039dd

    • SHA256

      45cdf5841c2fa78cc444a0926fd3b9e7fab51d061988c45bc894ebb09991bc5d

    • SHA512

      68475d89314d4273af8c01e5c71d39230d2c3fcb2d53048ed003d44d63f8270d9f8cd0c4858fad778ea0c460adf42c3e6f4aef7b255c09b717e84ce8b5d58db9

    • SSDEEP

      6144:tB27VZ3oMfRczHKW826U0l78ajUdsB+sBT:tBev4wRg7E8KUOFB

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks