General

  • Target

    a879d92dc54e3c3cfa48155d7102817ff1d103a886fb560ca22e59aa26874d74

  • Size

    131KB

  • Sample

    240611-b1tx2sygmd

  • MD5

    8f059947a665e6687ded04c464d18e08

  • SHA1

    72d307abdd0d5b9691eacabd6cdf1e09376e62f9

  • SHA256

    a879d92dc54e3c3cfa48155d7102817ff1d103a886fb560ca22e59aa26874d74

  • SHA512

    d03d848992d7a765d046a2383cf55f9e37f64ad882540559d8141ca71c56106f3690f547820846ac7f15a2c2e8ac20cda62f34f5c56eb4f69c937c79edcf8336

  • SSDEEP

    3072:hEboFVlGAvwsgbpvYfMTc72L10fPsout6nn:GBzsgbpvnTcyOPsoS6nn

Score
10/10
upx

Malware Config

Targets

    • Target

      a879d92dc54e3c3cfa48155d7102817ff1d103a886fb560ca22e59aa26874d74

    • Size

      131KB

    • MD5

      8f059947a665e6687ded04c464d18e08

    • SHA1

      72d307abdd0d5b9691eacabd6cdf1e09376e62f9

    • SHA256

      a879d92dc54e3c3cfa48155d7102817ff1d103a886fb560ca22e59aa26874d74

    • SHA512

      d03d848992d7a765d046a2383cf55f9e37f64ad882540559d8141ca71c56106f3690f547820846ac7f15a2c2e8ac20cda62f34f5c56eb4f69c937c79edcf8336

    • SSDEEP

      3072:hEboFVlGAvwsgbpvYfMTc72L10fPsout6nn:GBzsgbpvnTcyOPsoS6nn

    Score
    9/10
    • UPX dump on OEP (original entry point)

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks