Overview

overview

10

Static

static

10

b862e094e2...e3.exe

windows7-x64

9

b862e094e2...e3.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b862e094e25950285d798c0bfcb9c587b584bb97355b23161bff6b73c0c801e3

  • Size

    624KB

  • Sample

    240524-ctl5ashh88

  • MD5

    64dbf1b0c3fcd719adf1dcd3560c19e2

  • SHA1

    b0ee3b9d8a0e30471f88d3072086b7cc44e09473

  • SHA256

    b862e094e25950285d798c0bfcb9c587b584bb97355b23161bff6b73c0c801e3

  • SHA512

    2cb38c63e5f6be65c7ca5ffd47ac2b717e370f9f828dcd5dd5c2041feaa4ab21b886839048c1acc8ab78d78ed6549dc22d7b40e1ad9f617fb1e884a7221557d7

  • SSDEEP

    12288:7tKe6Zv23YLVFhBsC8iFHSs7xPY1f6Hrhdy/Ybw/6yfZEh778Lu91/wBdj:v6Zv2ivhBVnFys7xP86Lh7uhmh8i914D

Score
10/10
persistenceupx

Malware Config

Targets

    • Target

      b862e094e25950285d798c0bfcb9c587b584bb97355b23161bff6b73c0c801e3

    • Size

      624KB

    • MD5

      64dbf1b0c3fcd719adf1dcd3560c19e2

    • SHA1

      b0ee3b9d8a0e30471f88d3072086b7cc44e09473

    • SHA256

      b862e094e25950285d798c0bfcb9c587b584bb97355b23161bff6b73c0c801e3

    • SHA512

      2cb38c63e5f6be65c7ca5ffd47ac2b717e370f9f828dcd5dd5c2041feaa4ab21b886839048c1acc8ab78d78ed6549dc22d7b40e1ad9f617fb1e884a7221557d7

    • SSDEEP

      12288:7tKe6Zv23YLVFhBsC8iFHSs7xPY1f6Hrhdy/Ybw/6yfZEh778Lu91/wBdj:v6Zv2ivhBVnFys7xP86Lh7uhmh8i914D

    Score
    9/10
    persistenceupx

    • UPX dump on OEP (original entry point)

    • Modifies Installed Components in the registry

      persistence

    • Executes dropped EXE

    • Modifies system executable filetype association

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks