Overview

overview

9

Static

static

1

2024-06-03...ch.exe

windows7-x64

9

2024-06-03...ch.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-06-03_66afd2d6b38513e1d55575808e584a11_floxif_snatch

  • Size

    16.2MB

  • Sample

    240603-vydb3ade5w

  • MD5

    66afd2d6b38513e1d55575808e584a11

  • SHA1

    de3423b122d5d7d8fcac299650d9580fe203b1d3

  • SHA256

    77c4fd368cf3a9afc33085d8576917020811404ed1c60b010341983ceb01d587

  • SHA512

    56616ad8d79f8fec1eb5531945ef3e8c6734e6768100b0c7edd449357a8ac5e12a634b73fb256b0c764c6c2e0ead2ab6893e5e06395ba8d5a85c00b04963c895

  • SSDEEP

    98304:uGdjOEwPuLnYsZLyyuWDJ6tzBYcZtYVCt/vzpeVXK3nEtJFLhXZNP2ftZ/kQNYQN:uGdSEBsWLyaDEtHHya/vIunIhpIHLN

Score
9/10
persistenceupx

Malware Config

Targets

    • Target

      2024-06-03_66afd2d6b38513e1d55575808e584a11_floxif_snatch

    • Size

      16.2MB

    • MD5

      66afd2d6b38513e1d55575808e584a11

    • SHA1

      de3423b122d5d7d8fcac299650d9580fe203b1d3

    • SHA256

      77c4fd368cf3a9afc33085d8576917020811404ed1c60b010341983ceb01d587

    • SHA512

      56616ad8d79f8fec1eb5531945ef3e8c6734e6768100b0c7edd449357a8ac5e12a634b73fb256b0c764c6c2e0ead2ab6893e5e06395ba8d5a85c00b04963c895

    • SSDEEP

      98304:uGdjOEwPuLnYsZLyyuWDJ6tzBYcZtYVCt/vzpeVXK3nEtJFLhXZNP2ftZ/kQNYQN:uGdSEBsWLyaDEtHHya/vIunIhpIHLN

    Score
    9/10
    upxpersistence

    • UPX dump on OEP (original entry point)

    • Modifies AppInit DLL entries

      persistence

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks