Overview

overview

7

Static

static

3

setup.exe

windows7-x64

7

setup.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    setup.exe

  • Size

    1.0MB

  • Sample

    240524-d1ty6abd98

  • MD5

    e255ee9eccb6e2b9cc8d8084f0af4fac

  • SHA1

    d3762bb2d3eed8b4744f80d13481d1053732fc5f

  • SHA256

    9ce9530a0de2061b4edaeeac366665867449b8755199002dfb75d88c1d119378

  • SHA512

    1c4af74e38243d63e65f7c31c0786a1a414cc3e477ae11590323fa535ae1b82acccf172c3cd52cf319253302691aefdaf497dad32b46e828506dfed197704c3e

  • SSDEEP

    24576:esSzlEqF+hVcOD/pf5fz19poadAQiM+az/fimj:wl8eOFBmQvXJj

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      setup.exe

    • Size

      1.0MB

    • MD5

      e255ee9eccb6e2b9cc8d8084f0af4fac

    • SHA1

      d3762bb2d3eed8b4744f80d13481d1053732fc5f

    • SHA256

      9ce9530a0de2061b4edaeeac366665867449b8755199002dfb75d88c1d119378

    • SHA512

      1c4af74e38243d63e65f7c31c0786a1a414cc3e477ae11590323fa535ae1b82acccf172c3cd52cf319253302691aefdaf497dad32b46e828506dfed197704c3e

    • SSDEEP

      24576:esSzlEqF+hVcOD/pf5fz19poadAQiM+az/fimj:wl8eOFBmQvXJj

    Score
    7/10
    discoveryupx

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks