Overview

overview

7

Static

static

3

9b13958f79...b3.exe

windows7-x64

7

9b13958f79...b3.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    9b13958f79aad6d33547da767389b4b3

  • Size

    45KB

  • Sample

    240214-hy6bmacd2t

  • MD5

    9b13958f79aad6d33547da767389b4b3

  • SHA1

    1997e7904c15ad39824b095798ecc549da6b2def

  • SHA256

    6a40a80d3ebc730c9b0c99815584f1709217236d6ae1e45677ed6f939ceea53f

  • SHA512

    a5cf47131080923ccc71fbdcea79a76044ea6e29ed1c4103e7902f3b094b04c04f4a8d2d8108336bd49a97f6600fe0ac533805e25efff5c6dd34950627df0e1b

  • SSDEEP

    768:6GkX/ija+1IxkB6PIoDg8zZq8Azq0ZZY1AjZSej9olGRh3agtlLdKutnWbdEf:6G0kB6Pv10ZXlph3agtzKutWbS

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      9b13958f79aad6d33547da767389b4b3

    • Size

      45KB

    • MD5

      9b13958f79aad6d33547da767389b4b3

    • SHA1

      1997e7904c15ad39824b095798ecc549da6b2def

    • SHA256

      6a40a80d3ebc730c9b0c99815584f1709217236d6ae1e45677ed6f939ceea53f

    • SHA512

      a5cf47131080923ccc71fbdcea79a76044ea6e29ed1c4103e7902f3b094b04c04f4a8d2d8108336bd49a97f6600fe0ac533805e25efff5c6dd34950627df0e1b

    • SSDEEP

      768:6GkX/ija+1IxkB6PIoDg8zZq8Azq0ZZY1AjZSej9olGRh3agtlLdKutnWbdEf:6G0kB6Pv10ZXlph3agtzKutWbS

    Score
    7/10
    persistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks