Overview

overview

8

Static

static

1

2458e839f5...e7.exe

windows7-x64

8

2458e839f5...e7.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2458e839f5548f9c2fbab634dfe7fa94973fe75083076babe9dd1b41714878e7

  • Size

    243KB

  • Sample

    240314-gn53faed77

  • MD5

    bcbba1bd5680bfe4072fc7f02eec19cf

  • SHA1

    75b30e3f7792fcf4254a97981f4543249a5e7f56

  • SHA256

    2458e839f5548f9c2fbab634dfe7fa94973fe75083076babe9dd1b41714878e7

  • SHA512

    3439f821fd3f7b4536556a335d4146ed028a84e0e60bcd69e9ce932633576d12cb5c98afa705a664d6ebf2cb890c29763ab30cf7aec7734b94412f44128ab553

  • SSDEEP

    3072:ewzvOYNtuaKavT/DvbEvK9aobNI2B+DlIH3angqtirxzGlB89Vo6FoCG55lO/X9H:1tuaK2h9H/B+3ChmBV+UdvrEFp7hK+tf

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      2458e839f5548f9c2fbab634dfe7fa94973fe75083076babe9dd1b41714878e7

    • Size

      243KB

    • MD5

      bcbba1bd5680bfe4072fc7f02eec19cf

    • SHA1

      75b30e3f7792fcf4254a97981f4543249a5e7f56

    • SHA256

      2458e839f5548f9c2fbab634dfe7fa94973fe75083076babe9dd1b41714878e7

    • SHA512

      3439f821fd3f7b4536556a335d4146ed028a84e0e60bcd69e9ce932633576d12cb5c98afa705a664d6ebf2cb890c29763ab30cf7aec7734b94412f44128ab553

    • SSDEEP

      3072:ewzvOYNtuaKavT/DvbEvK9aobNI2B+DlIH3angqtirxzGlB89Vo6FoCG55lO/X9H:1tuaK2h9H/B+3ChmBV+UdvrEFp7hK+tf

    Score
    8/10
    persistenceupx

    • Modifies AppInit DLL entries

      persistence

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks