Overview

overview

8

Static

static

7

b86bcfbb39...61.exe

windows7-x64

8

b86bcfbb39...61.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    b86bcfbb39d8d5925750b4255f104661

  • Size

    15KB

  • Sample

    240307-lmvyasgd68

  • MD5

    b86bcfbb39d8d5925750b4255f104661

  • SHA1

    f4b7661e3c914d2a4458def16757bb02bdc29373

  • SHA256

    7bb292b78264b9e35eeea664767422b373bf40fab25893172195fd65dc8e7bd5

  • SHA512

    70a95c56187d052ac3cd12d3646b98769d28e0ea5c8dcc850283117b43fba0d782ac22f9dc94ae8e8c015e9e65525770474e28473771e7ca17c5825cbfb85d80

  • SSDEEP

    384:G5g3PLUTLk/FG5ddtacu3firPHqP3IS9dg+cluZv9+A:+g3PLR/FDnPqPKP3If+cc1

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      b86bcfbb39d8d5925750b4255f104661

    • Size

      15KB

    • MD5

      b86bcfbb39d8d5925750b4255f104661

    • SHA1

      f4b7661e3c914d2a4458def16757bb02bdc29373

    • SHA256

      7bb292b78264b9e35eeea664767422b373bf40fab25893172195fd65dc8e7bd5

    • SHA512

      70a95c56187d052ac3cd12d3646b98769d28e0ea5c8dcc850283117b43fba0d782ac22f9dc94ae8e8c015e9e65525770474e28473771e7ca17c5825cbfb85d80

    • SSDEEP

      384:G5g3PLUTLk/FG5ddtacu3firPHqP3IS9dg+cluZv9+A:+g3PLR/FDnPqPKP3If+cc1

    Score
    8/10
    persistenceupx

    • Modifies AppInit DLL entries

      persistence

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks