Overview

overview

8

Static

static

7

b417520adc...98.exe

windows7-x64

8

b417520adc...98.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b417520adc01a922c56f942f4075de98

  • Size

    10KB

  • Sample

    240305-hwq4xshc6x

  • MD5

    b417520adc01a922c56f942f4075de98

  • SHA1

    8835512659b8a04266a2643bacea84e2dc4e95d7

  • SHA256

    9b391d5bacc3b30ef87d8aa2197ba6d49c254b21d9d1901e79a2e90c9307c8a9

  • SHA512

    716a9bf30eea000cc1bae67642e7b70f34c0a38d5cf52049baca458e95f21bd9228a09b9cdd779928f27af2f9b25f4553cce02d58b24c70bca0456e974b33ae0

  • SSDEEP

    192:70Abfjwc03Ex8Swcp/nncrR37vOhGytPg+Q+:7fDEx3E6SnPcrRLly9gd+

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      b417520adc01a922c56f942f4075de98

    • Size

      10KB

    • MD5

      b417520adc01a922c56f942f4075de98

    • SHA1

      8835512659b8a04266a2643bacea84e2dc4e95d7

    • SHA256

      9b391d5bacc3b30ef87d8aa2197ba6d49c254b21d9d1901e79a2e90c9307c8a9

    • SHA512

      716a9bf30eea000cc1bae67642e7b70f34c0a38d5cf52049baca458e95f21bd9228a09b9cdd779928f27af2f9b25f4553cce02d58b24c70bca0456e974b33ae0

    • SSDEEP

      192:70Abfjwc03Ex8Swcp/nncrR37vOhGytPg+Q+:7fDEx3E6SnPcrRLly9gd+

    Score
    8/10
    persistenceupx

    • Modifies AppInit DLL entries

      persistence

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks