Overview

overview

10

Static

static

10

Resource.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    Resource.rar

  • Size

    7.4MB

  • Sample

    240614-jekfgstgnm

  • MD5

    fe28d078e63b4a42369dded1e982099e

  • SHA1

    6ee1bc0ecdaec1cc6324a892fa53801ec547f17f

  • SHA256

    81d49695688ae5d0379fe32bb54ed603635e3fab0353935523f0117959c4e1e0

  • SHA512

    ec32d40a548633c7232328a46811435dad05e12d899f26f5db9628974366a81b63211fbd53e9f141c6764f17c2997f01327d816854a9f61fbb8e76dde224a0df

  • SSDEEP

    196608:hwkpuvlJpecClNTO8GcqLgr6CLtcghpkPsTiuSIXm6Vmik:hw7XpecCjTlrdLCQppiZIXml9

Score
10/10
blankgrabberexecutionupx

Malware Config

Targets

    • Target

      Resource.exe

    • Size

      7.4MB

    • MD5

      cd56d1639c638ef44a1cbcf6756ef2ba

    • SHA1

      784970f33b026fe770d8c0f8938d17b26c428327

    • SHA256

      79041d419f813d07403d5ea0e190c09f63c0e9339bcf225b4588388de34aaa88

    • SHA512

      c00a3be6d4cbc672b4fe3b4afb5072832a870c99d795656380e23d33e9b7b45f2d0851ba86e1d35fe502af2d001cf13e13ff6d431349dc166cfbdcc54bb19b39

    • SSDEEP

      196608:qw0cDemLjv+bhqNVoBKUh8mz4Iv9Pmu1D7wJo:SieaL+9qz8/b4IsuRmo

    Score
    8/10
    executionupx

    • Command and Scripting Interpreter: PowerShell

      Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.

      execution

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks