Overview

overview

8

Static

static

1

945c357386...48.exe

windows7-x64

7

945c357386...48.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    945c3573863fcb944a1d1c15f5db7c202aea7259d9612f526a0fa76e5392fa48

  • Size

    243KB

  • Sample

    240417-dr7tnadf8s

  • MD5

    341a6677b52b6394c6612209d6933d4a

  • SHA1

    c42c0d5b76a6fe2d3cf8fc0be7bc2ef6c5d7af6c

  • SHA256

    945c3573863fcb944a1d1c15f5db7c202aea7259d9612f526a0fa76e5392fa48

  • SHA512

    9e84da005f8b280d7a27ad6edaa7938e484e4ab39bdbfa940477444dd9b1bd871058543c86ee96fff1eb5ab84d62ce87af83a86f9dd0cc29334849797f5e9cca

  • SSDEEP

    6144:11iP/aKsRh9H/B+3ChmBV+UdvrEFp7hKApra:10P/aKsRvB+yYBjvrEH7da

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      945c3573863fcb944a1d1c15f5db7c202aea7259d9612f526a0fa76e5392fa48

    • Size

      243KB

    • MD5

      341a6677b52b6394c6612209d6933d4a

    • SHA1

      c42c0d5b76a6fe2d3cf8fc0be7bc2ef6c5d7af6c

    • SHA256

      945c3573863fcb944a1d1c15f5db7c202aea7259d9612f526a0fa76e5392fa48

    • SHA512

      9e84da005f8b280d7a27ad6edaa7938e484e4ab39bdbfa940477444dd9b1bd871058543c86ee96fff1eb5ab84d62ce87af83a86f9dd0cc29334849797f5e9cca

    • SSDEEP

      6144:11iP/aKsRh9H/B+3ChmBV+UdvrEFp7hKApra:10P/aKsRvB+yYBjvrEH7da

    Score
    8/10
    upxpersistence

    • Modifies AppInit DLL entries

      persistence

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks