Overview

overview

10

Static

static

10

UserBenchmark.exe

windows11-21h2-x64

9

Resubmissions

24-04-2024 17:08

240424-vn28fadf82 10

24-04-2024 17:05

240424-vl6svadf5z 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    UserBenchmark.exe

  • Size

    76.4MB

  • Sample

    240424-vn28fadf82

  • MD5

    85a2c587d0ad61cd500bd954bbc2f8d5

  • SHA1

    f6a3acf77b41f4e9b052ea8e5f814a3b7cba3608

  • SHA256

    4514bd8948720a9e06108384552831abe78c7125dc7ca2ab7b9ba4552358c579

  • SHA512

    9415ab6162e1034974edecd673b490d2bf2ea6e9be643c647aebf2433a6fc9e3f9b0b2d188225e5310f8aa1fb8f764ffe866ed65bbd1248df9f02ac05115f0de

  • SSDEEP

    1572864:U2fybj948Sk8IpG7V+VPhqb+vHE7rjxL7fEXiYweyJulZUdgCI1MWhe2qkmDtaff:U26bu8SkB05awb+vytMYpuW0MgbAtan

Score
10/10
pysilonevasionpersistencepyinstallerupx

Malware Config

Targets

    • Target

      UserBenchmark.exe

    • Size

      76.4MB

    • MD5

      85a2c587d0ad61cd500bd954bbc2f8d5

    • SHA1

      f6a3acf77b41f4e9b052ea8e5f814a3b7cba3608

    • SHA256

      4514bd8948720a9e06108384552831abe78c7125dc7ca2ab7b9ba4552358c579

    • SHA512

      9415ab6162e1034974edecd673b490d2bf2ea6e9be643c647aebf2433a6fc9e3f9b0b2d188225e5310f8aa1fb8f764ffe866ed65bbd1248df9f02ac05115f0de

    • SSDEEP

      1572864:U2fybj948Sk8IpG7V+VPhqb+vHE7rjxL7fEXiYweyJulZUdgCI1MWhe2qkmDtaff:U26bu8SkB05awb+vytMYpuW0MgbAtan

    Score
    9/10
    evasionpersistenceupx

    • Enumerates VirtualBox DLL files

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

      evasion

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks