Overview

overview

9

Static

static

3

48f9ab4155...4f.dll

windows7-x64

9

48f9ab4155...4f.dll

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    48f9ab4155a2030b27d3dcbc47eebbc7ba1f5bc412b1db50a8b05f3021145c4f

  • Size

    155KB

  • Sample

    240601-zsvflsfe85

  • MD5

    4a8026f3a583803d19d81f17e8fa81c5

  • SHA1

    a39e59fc14a045e76ab9000b419e8a6723c9fde0

  • SHA256

    48f9ab4155a2030b27d3dcbc47eebbc7ba1f5bc412b1db50a8b05f3021145c4f

  • SHA512

    86c0ed92cd5e50fd94784f89d17d452ae1e88e477da1e2081d9becea0338e78d30b2d2e77369195324e245cae62a726ffb4724ef64f32f3418b8349dd40ee568

  • SSDEEP

    3072:qlqY51dMOQDs9y2lQBV+UdE+rECWp7hKm/Du:m5IQ4BV+UdvrEFp7hKP

Score
9/10
upx

Malware Config

Targets

    • Target

      48f9ab4155a2030b27d3dcbc47eebbc7ba1f5bc412b1db50a8b05f3021145c4f

    • Size

      155KB

    • MD5

      4a8026f3a583803d19d81f17e8fa81c5

    • SHA1

      a39e59fc14a045e76ab9000b419e8a6723c9fde0

    • SHA256

      48f9ab4155a2030b27d3dcbc47eebbc7ba1f5bc412b1db50a8b05f3021145c4f

    • SHA512

      86c0ed92cd5e50fd94784f89d17d452ae1e88e477da1e2081d9becea0338e78d30b2d2e77369195324e245cae62a726ffb4724ef64f32f3418b8349dd40ee568

    • SSDEEP

      3072:qlqY51dMOQDs9y2lQBV+UdE+rECWp7hKm/Du:m5IQ4BV+UdvrEFp7hKP

    Score
    9/10
    upx

    • UPX dump on OEP (original entry point)

    • Blocklisted process makes network request

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks