Overview

overview

8

Static

static

7

Lowez Exte...ol.exe

windows7-x64

7

Lowez Exte...ol.exe

windows10-2004-x64

7

Lowez Exte...al.exe

windows7-x64

8

Lowez Exte...al.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Lowez+External.rar

  • Size

    679KB

  • Sample

    240604-d5kahscd93

  • MD5

    ff4862e5f4c3ffa983cc157787c3306e

  • SHA1

    0e81c4770979ecd92c33fc48ce8596d2778fbded

  • SHA256

    5c9ab1adcde7124035056480715339d04f267415235217c5eb55c9d4f33ca042

  • SHA512

    70891a3ddf5b477d8f9110d5ad48c9164f7516c48735c552edf905a57929519c88ceb8ff1d3bfefa043f5b48d7ea5ecf67c6e222635e7ac954b2a3ed80108ee0

  • SSDEEP

    12288:YQyIja8ylbo1S3Jk4cEpXdqsBYkB6FONyxix3iQ6zjVkV9RByvbllILKeb5micYA:YQyJ8LYk4nzgbF2ys34wFyJlIOQsicP

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      Lowez External/Lowez External/1. Disable Defender Tool/dControl.exe

    • Size

      447KB

    • MD5

      58008524a6473bdf86c1040a9a9e39c3

    • SHA1

      cb704d2e8df80fd3500a5b817966dc262d80ddb8

    • SHA256

      1ef6c1a4dfdc39b63bfe650ca81ab89510de6c0d3d7c608ac5be80033e559326

    • SHA512

      8cf492584303523bf6cdfeb6b1b779ee44471c91e759ce32fd4849547b6245d4ed86af5b38d1c6979729a77f312ba91c48207a332ae1589a6e25de67ffb96c31

    • SSDEEP

      6144:Vzv+kSn74iCmfianQGDM3OXTWRDy9GYQDUmJFXIXHrsUBnBTF8JJCYrYNsQJzfgu:Vzcn7EanlQiWtYhmJFSwUBLcQZfgiD

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    behavioral1behavioral2

    • Target

      Lowez External/Lowez External/2. Cheat/Lowez External.exe

    • Size

      714KB

    • MD5

      8fddd1e31a5d782f4ee47a6de32e69eb

    • SHA1

      a961f0ff83d6b13ebfb82a103ff217f62bff9830

    • SHA256

      1e060cd7e39930b5d872e4edb4854d4c29a72a6262da052014176abbb8a98deb

    • SHA512

      575535bace7ef646405d55a08986a3e86bdb80e9cbb6235e0b5db12aa6dfc8a7f25f7625902ff4f35f0510bf86f9f9253456334311a8ae7c74bfc5a2742578a5

    • SSDEEP

      6144:QV+n+Zr3hlHXOE9kskcEWFg69qnhpCIcp1H52FZi5kKWld3s9QGlO1ZDvdQlTzI3:Q6QHXwZWh9qnhpDc1X+Xr38k1ZDvgT1

    Score
    8/10
    persistence

    • Sets service image path in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks