Overview

overview

9

Static

static

3

5c4a1d5a81...35.exe

windows7-x64

4

5c4a1d5a81...35.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    5c4a1d5a81989d4808d8815757171031edf6a4427f60bb4b4eef985b62af9035

  • Size

    120KB

  • Sample

    240408-1debhsfg4v

  • MD5

    3da100f47e57a5c7ca32f24873cab084

  • SHA1

    eedaf0f636569e5d43ad9089ef48af8544244222

  • SHA256

    5c4a1d5a81989d4808d8815757171031edf6a4427f60bb4b4eef985b62af9035

  • SHA512

    d48e1746d4a67b3698cd0a52fac19a27ff8e4e3cde4f3e522fad9212f26dea1f2e7a5ced575b6e8830d99476e0440c7a17ae428f821735bde2ca1b38df3efa51

  • SSDEEP

    1536:y+gisi/OTW1bk3FwErVvHcTuBignpwLsO9NXw6dcgxIhpEyW268OQiD4JG7:yIZ1bk1FVvHcToO4O9fcgxuqyWVM6

Score
9/10
upx

Malware Config

Targets

    • Target

      5c4a1d5a81989d4808d8815757171031edf6a4427f60bb4b4eef985b62af9035

    • Size

      120KB

    • MD5

      3da100f47e57a5c7ca32f24873cab084

    • SHA1

      eedaf0f636569e5d43ad9089ef48af8544244222

    • SHA256

      5c4a1d5a81989d4808d8815757171031edf6a4427f60bb4b4eef985b62af9035

    • SHA512

      d48e1746d4a67b3698cd0a52fac19a27ff8e4e3cde4f3e522fad9212f26dea1f2e7a5ced575b6e8830d99476e0440c7a17ae428f821735bde2ca1b38df3efa51

    • SSDEEP

      1536:y+gisi/OTW1bk3FwErVvHcTuBignpwLsO9NXw6dcgxIhpEyW268OQiD4JG7:yIZ1bk1FVvHcToO4O9fcgxuqyWVM6

    Score
    9/10
    upx

    • UPX dump on OEP (original entry point)

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks