General
-
Target
6a987139d9ec2ab82bb4d9fdc8276df209ed94e35f2d203a0fa6ad7b28a03362
-
Size
126KB
-
Sample
240522-aptbpsef63
-
MD5
20a354f57449946583a4e43f92aa1114
-
SHA1
a00a5ef977a06243a54cc437fe3c831eda4e7ff1
-
SHA256
6a987139d9ec2ab82bb4d9fdc8276df209ed94e35f2d203a0fa6ad7b28a03362
-
SHA512
954eb745f50525b1e50f0dc32106867a0c4af4bffcaf341e1eabdae294a7471ea26b0a87848b0c68cb2aad0aa90d976d15cfb3db7cfeecf4e322acbe9782dab9
-
SSDEEP
3072:1EboFVlGAvwsgbpvYfMTc72L10fPsout6S:qBzsgbpvnTcyOPsoS6S
Malware Config
Targets
-
-
Target
6a987139d9ec2ab82bb4d9fdc8276df209ed94e35f2d203a0fa6ad7b28a03362
-
Size
126KB
-
MD5
20a354f57449946583a4e43f92aa1114
-
SHA1
a00a5ef977a06243a54cc437fe3c831eda4e7ff1
-
SHA256
6a987139d9ec2ab82bb4d9fdc8276df209ed94e35f2d203a0fa6ad7b28a03362
-
SHA512
954eb745f50525b1e50f0dc32106867a0c4af4bffcaf341e1eabdae294a7471ea26b0a87848b0c68cb2aad0aa90d976d15cfb3db7cfeecf4e322acbe9782dab9
-
SSDEEP
3072:1EboFVlGAvwsgbpvYfMTc72L10fPsout6S:qBzsgbpvnTcyOPsoS6S
Score9/10-
UPX dump on OEP (original entry point)
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Drops file in System32 directory
-
Suspicious use of SetThreadContext
-