Overview

overview

10

Static

static

10

27ad5312cf...06.exe

windows7-x64

9

27ad5312cf...06.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    27ad5312cf6162584d7945371b41f58fdf7b7f6b1e4442b3270ade1e6ea60b06

  • Size

    133KB

  • Sample

    240610-yqtwmayerp

  • MD5

    af40dc9a3a1a31ae075055513699f59d

  • SHA1

    b0908039be8570e29138042ff98382576e064b41

  • SHA256

    27ad5312cf6162584d7945371b41f58fdf7b7f6b1e4442b3270ade1e6ea60b06

  • SHA512

    3b328fb4cc36afd819f586125bef674f9b609834508d12ebdebdd6dfec7725b8adf95cb67a267b4399e5e7cb5c168d31468983975a4f1747e680cca9a5a76518

  • SSDEEP

    3072:pEboFVlGAvwsgbpvYfMTc72L10fPsout6nnn:eBzsgbpvnTcyOPsoS6nnn

Score
10/10
upx

Malware Config

Targets

    • Target

      27ad5312cf6162584d7945371b41f58fdf7b7f6b1e4442b3270ade1e6ea60b06

    • Size

      133KB

    • MD5

      af40dc9a3a1a31ae075055513699f59d

    • SHA1

      b0908039be8570e29138042ff98382576e064b41

    • SHA256

      27ad5312cf6162584d7945371b41f58fdf7b7f6b1e4442b3270ade1e6ea60b06

    • SHA512

      3b328fb4cc36afd819f586125bef674f9b609834508d12ebdebdd6dfec7725b8adf95cb67a267b4399e5e7cb5c168d31468983975a4f1747e680cca9a5a76518

    • SSDEEP

      3072:pEboFVlGAvwsgbpvYfMTc72L10fPsout6nnn:eBzsgbpvnTcyOPsoS6nnn

    Score
    9/10
    upx

    • UPX dump on OEP (original entry point)

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks