Overview

overview

7

Static

static

1

SafeguardP...30.exe

windows11-21h2-x64

7

Resubmissions

17/06/2024, 07:31

240617-jcga2svajn 7

Sharing

Copy URL Twitter E-mail

General

  • Target

    SafeguardPDFViewer-v3.0.2.230.exe

  • Size

    50.2MB

  • Sample

    240617-jcga2svajn

  • MD5

    8695edab7c5d91391841cbe009c82976

  • SHA1

    76f61fa5f91bedfcaa70ccdc3f880dc98ff078ef

  • SHA256

    2c09f6afbbe2f15d200fab1281447d6093da151a5041e69c218fc20d80adab20

  • SHA512

    29f7f1be5289bf269978fb8cbc0d60ac641c78903df06575977a032b67c397df441c86b70a0e50c144ef2f9702a94d0711584ef32ea584d73cacae261a275f96

  • SSDEEP

    1572864:ohtkuuWcluwBDRkTkZt6o+B7oXzZl+9ijGReUqIF:RJlu+dMu0o+7k29iMnq

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      SafeguardPDFViewer-v3.0.2.230.exe

    • Size

      50.2MB

    • MD5

      8695edab7c5d91391841cbe009c82976

    • SHA1

      76f61fa5f91bedfcaa70ccdc3f880dc98ff078ef

    • SHA256

      2c09f6afbbe2f15d200fab1281447d6093da151a5041e69c218fc20d80adab20

    • SHA512

      29f7f1be5289bf269978fb8cbc0d60ac641c78903df06575977a032b67c397df441c86b70a0e50c144ef2f9702a94d0711584ef32ea584d73cacae261a275f96

    • SSDEEP

      1572864:ohtkuuWcluwBDRkTkZt6o+B7oXzZl+9ijGReUqIF:RJlu+dMu0o+7k29iMnq

    Score
    7/10
    discoveryupx

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks