Overview

overview

8

Static

static

7

virussign....00.exe

windows7-x64

8

virussign....00.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    virussign.com_6dba1b11bb66d156b1af3c0a5d645a00.vir

  • Size

    579KB

  • Sample

    240528-tefgmsba5z

  • MD5

    6dba1b11bb66d156b1af3c0a5d645a00

  • SHA1

    5ae2d1cd30f31b608d5400b74770b5a57be68941

  • SHA256

    c61214941383f26350a38acb13572d054087927943f4ad5befd15d5848f5981b

  • SHA512

    df374d5195efc1152465f110509b2f9d1ab22d84477e476b003436aadd4b79c1fe23d3d8c1e0089c2a9f1523df6f536aaff5a1ff8e2beca452d16e117e8c56e5

  • SSDEEP

    12288:7tKe6Zv23YLVFhBsC8iFHSs7xPY1f6HriPwU8mNCZA9M:v6Zv2ivhBVnFys7xP86LkRCmM

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      virussign.com_6dba1b11bb66d156b1af3c0a5d645a00.vir

    • Size

      579KB

    • MD5

      6dba1b11bb66d156b1af3c0a5d645a00

    • SHA1

      5ae2d1cd30f31b608d5400b74770b5a57be68941

    • SHA256

      c61214941383f26350a38acb13572d054087927943f4ad5befd15d5848f5981b

    • SHA512

      df374d5195efc1152465f110509b2f9d1ab22d84477e476b003436aadd4b79c1fe23d3d8c1e0089c2a9f1523df6f536aaff5a1ff8e2beca452d16e117e8c56e5

    • SSDEEP

      12288:7tKe6Zv23YLVFhBsC8iFHSs7xPY1f6HriPwU8mNCZA9M:v6Zv2ivhBVnFys7xP86LkRCmM

    Score
    8/10
    persistenceupx

    • Modifies Installed Components in the registry

      persistence

    • Executes dropped EXE

    • Modifies system executable filetype association

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks