Overview

overview

8

Static

static

1

Screenshot...PM.png

windows10-2004-x64

8

Resubmissions

15/04/2024, 10:25

240415-mf51csee8w 8

15/04/2024, 10:07

240415-l5ph8seb7w 3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Screenshot 2024-03-08 4.52.12 PM.png

  • Size

    456KB

  • Sample

    240415-mf51csee8w

  • MD5

    16a6df145321e8ccecb223b048b962a0

  • SHA1

    a0756e8d34b813c7da35ef91244eff391e94dbf5

  • SHA256

    91b481b1a4b29e5cfd1583275516087c7dc8a574250bdd083661b7e8e231d164

  • SHA512

    efa68a87651e3d249de2e5b929e0da21a917282c4e8e72cdb10dd58155288307d91d37c6f3c748abf6bd5edb5f64958a626e3014becd502f772ed99b7ecd59d5

  • SSDEEP

    12288:/V9eAsq8orMC97VNeSkEqk6ahgmqpTiAaGfvLah:9cqjJXeS96aCYAaAah

Score
8/10
discoveryevasiontrojanupx

Malware Config

Targets

    • Target

      Screenshot 2024-03-08 4.52.12 PM.png

    • Size

      456KB

    • MD5

      16a6df145321e8ccecb223b048b962a0

    • SHA1

      a0756e8d34b813c7da35ef91244eff391e94dbf5

    • SHA256

      91b481b1a4b29e5cfd1583275516087c7dc8a574250bdd083661b7e8e231d164

    • SHA512

      efa68a87651e3d249de2e5b929e0da21a917282c4e8e72cdb10dd58155288307d91d37c6f3c748abf6bd5edb5f64958a626e3014becd502f772ed99b7ecd59d5

    • SSDEEP

      12288:/V9eAsq8orMC97VNeSkEqk6ahgmqpTiAaGfvLah:9cqjJXeS96aCYAaAah

    Score
    8/10
    discoveryevasiontrojanupx

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Checks whether UAC is enabled

      evasiontrojan
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks