Overview

overview

7

Static

static

7

df33037c41...85.exe

windows7-x64

7

df33037c41...85.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    df33037c418156a25215f613046f3b85

  • Size

    287KB

  • Sample

    240326-p1mqmadd9z

  • MD5

    df33037c418156a25215f613046f3b85

  • SHA1

    6eab2dae9ed4e79f52f384b8adbd28acb7c5cdad

  • SHA256

    db4de03de549ff48fc9bf6c9347fb0e7f13dc8d835ec2238024e4820589249d0

  • SHA512

    ec20e4bda414a85e860ac26d4e6a31c3035369758ebf57ef95a368dc497b6da7c016a7908b01ace41a2d1f4aaaa1e016be35b3f5baa37423db501e1e006cad15

  • SSDEEP

    6144:nrMaP/a1FeADB3uAyVzenZ3SgzeoVeaIIqJGrkMtJzCQB7VuJqV4koSw:rvP/iTu3z0ZCGIIKoHzREJqhoSw

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      df33037c418156a25215f613046f3b85

    • Size

      287KB

    • MD5

      df33037c418156a25215f613046f3b85

    • SHA1

      6eab2dae9ed4e79f52f384b8adbd28acb7c5cdad

    • SHA256

      db4de03de549ff48fc9bf6c9347fb0e7f13dc8d835ec2238024e4820589249d0

    • SHA512

      ec20e4bda414a85e860ac26d4e6a31c3035369758ebf57ef95a368dc497b6da7c016a7908b01ace41a2d1f4aaaa1e016be35b3f5baa37423db501e1e006cad15

    • SSDEEP

      6144:nrMaP/a1FeADB3uAyVzenZ3SgzeoVeaIIqJGrkMtJzCQB7VuJqV4koSw:rvP/iTu3z0ZCGIIKoHzREJqhoSw

    Score
    7/10
    persistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks