Overview

overview

8

Static

static

7

c8011a200d...49.exe

windows7-x64

8

c8011a200d...49.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    c8011a200d60c1b8b842d91078281049

  • Size

    14KB

  • Sample

    240314-hx11hsff75

  • MD5

    c8011a200d60c1b8b842d91078281049

  • SHA1

    6faf4436cf82540b9560ff6b76aec885f442826e

  • SHA256

    c7c3c65a71ff36bc65e32f050169ba2dde7e61740e63a1d3eb040eeb1f2e0512

  • SHA512

    1c5123408d7adb4b07d0fc3e6db9b8cb173e19596c95d2f68acd6a723129afb05626fd84dbcd3d0a9cae9796f09a08871241849f6de1c4ba3134dd5b3f27630d

  • SSDEEP

    192:EawE9e6BACdbQstv7U8vAzN7aVD1xWdj7cEhvM5I21PN1PYIm4bT6aIyE9i7lFBG:Ed/wbp8z4Kd/cEhvMfaIhq0RBFBpICe

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      c8011a200d60c1b8b842d91078281049

    • Size

      14KB

    • MD5

      c8011a200d60c1b8b842d91078281049

    • SHA1

      6faf4436cf82540b9560ff6b76aec885f442826e

    • SHA256

      c7c3c65a71ff36bc65e32f050169ba2dde7e61740e63a1d3eb040eeb1f2e0512

    • SHA512

      1c5123408d7adb4b07d0fc3e6db9b8cb173e19596c95d2f68acd6a723129afb05626fd84dbcd3d0a9cae9796f09a08871241849f6de1c4ba3134dd5b3f27630d

    • SSDEEP

      192:EawE9e6BACdbQstv7U8vAzN7aVD1xWdj7cEhvM5I21PN1PYIm4bT6aIyE9i7lFBG:Ed/wbp8z4Kd/cEhvMfaIhq0RBFBpICe

    Score
    8/10
    persistenceupx

    • Modifies AppInit DLL entries

      persistence

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks