Overview

overview

10

Static

static

10

2024-05-27...ai.exe

windows7-x64

9

2024-05-27...ai.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-27_4c097db3aa3c3d236e50afcff85ac0b9_mafia_mirai

  • Size

    19.0MB

  • Sample

    240527-rtpbzsfe9t

  • MD5

    4c097db3aa3c3d236e50afcff85ac0b9

  • SHA1

    9375fe626057b279b40273659451caa62bd151dd

  • SHA256

    f4883ce47c32bbb394bd4ee98918a2d137b5f3a7fb13e79e6cbaf18a169ef2ab

  • SHA512

    34b6e24dbc29079f41a311715f7e617e2e2911d967610b38df8ffa15d6a7b0845f006f1e0f0272f1a9a6632cbb90ded47a343642d88074adc142ccdc828cb913

  • SSDEEP

    393216:6LVaeIyIbVpM5/VDuF1juxq/pnJtJNv8V1+3:CbItVIVD+9uxsnJtJNv5

Score
10/10
persistenceupx

Malware Config

Targets

    • Target

      2024-05-27_4c097db3aa3c3d236e50afcff85ac0b9_mafia_mirai

    • Size

      19.0MB

    • MD5

      4c097db3aa3c3d236e50afcff85ac0b9

    • SHA1

      9375fe626057b279b40273659451caa62bd151dd

    • SHA256

      f4883ce47c32bbb394bd4ee98918a2d137b5f3a7fb13e79e6cbaf18a169ef2ab

    • SHA512

      34b6e24dbc29079f41a311715f7e617e2e2911d967610b38df8ffa15d6a7b0845f006f1e0f0272f1a9a6632cbb90ded47a343642d88074adc142ccdc828cb913

    • SSDEEP

      393216:6LVaeIyIbVpM5/VDuF1juxq/pnJtJNv8V1+3:CbItVIVD+9uxsnJtJNv5

    Score
    9/10
    persistenceupx

    • UPX dump on OEP (original entry point)

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks