Overview

overview

9

Static

static

3

VirusShare...a0.dll

windows7-x64

9

VirusShare...a0.dll

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    VirusShare_d1fa8532a6460dd0c52190eacf64f1a0

  • Size

    114KB

  • Sample

    240204-zrlr3scfck

  • MD5

    d1fa8532a6460dd0c52190eacf64f1a0

  • SHA1

    f4891e004627e31bc7f17846275411d4da546847

  • SHA256

    14ccad952460195840935e06a0bd317fd1072c1cfada8c76bf9d9664bc5631bb

  • SHA512

    759b9aad092c572e58a07b89e425ab33f90e62c689abd28865296e3d36203a90e283017874bc88bc8c1a9162beabcd6e18ca1f445ce32d5f22ff6b5e39d68b6a

  • SSDEEP

    1536:nKWqfybE69Z2CTm1Qe4FDg09uGvIEhdAm1PUY8sSeux/YOh+:gqI690CTUQHFrlgErAqscSjxgOh

Score
9/10
persistenceupx

Malware Config

Targets

    • Target

      VirusShare_d1fa8532a6460dd0c52190eacf64f1a0

    • Size

      114KB

    • MD5

      d1fa8532a6460dd0c52190eacf64f1a0

    • SHA1

      f4891e004627e31bc7f17846275411d4da546847

    • SHA256

      14ccad952460195840935e06a0bd317fd1072c1cfada8c76bf9d9664bc5631bb

    • SHA512

      759b9aad092c572e58a07b89e425ab33f90e62c689abd28865296e3d36203a90e283017874bc88bc8c1a9162beabcd6e18ca1f445ce32d5f22ff6b5e39d68b6a

    • SSDEEP

      1536:nKWqfybE69Z2CTm1Qe4FDg09uGvIEhdAm1PUY8sSeux/YOh+:gqI690CTUQHFrlgErAqscSjxgOh

    Score
    9/10
    persistenceupx

    • UPX dump on OEP (original entry point)

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks