Overview

overview

8

Static

static

7

edb72b65f6...94.exe

windows7-x64

8

edb72b65f6...94.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    edb72b65f6a5eb7d5d5c1cf3f1c9324035a98ed8d49065f36db239ae17ea3e94

  • Size

    849KB

  • Sample

    240625-ek5amazbjb

  • MD5

    469d1c2f3f9b01c60a273e45962056b0

  • SHA1

    b6156dc61d9cf832f09727472cd6c4009eb80818

  • SHA256

    edb72b65f6a5eb7d5d5c1cf3f1c9324035a98ed8d49065f36db239ae17ea3e94

  • SHA512

    b5d3916597c31fdda218f0c6dc6de369d60e868e6184fa6ee81973adf80e3a40f23dbffb615341e3dd0f93566d379fb292cbfb8770c7cf66420a7f1fe72f9263

  • SSDEEP

    24576:v6Zv2ivhBVnFys7xP86LXtqWJ/ej0qjVWg:vE2ivhQs7dLX/JkdIg

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      edb72b65f6a5eb7d5d5c1cf3f1c9324035a98ed8d49065f36db239ae17ea3e94

    • Size

      849KB

    • MD5

      469d1c2f3f9b01c60a273e45962056b0

    • SHA1

      b6156dc61d9cf832f09727472cd6c4009eb80818

    • SHA256

      edb72b65f6a5eb7d5d5c1cf3f1c9324035a98ed8d49065f36db239ae17ea3e94

    • SHA512

      b5d3916597c31fdda218f0c6dc6de369d60e868e6184fa6ee81973adf80e3a40f23dbffb615341e3dd0f93566d379fb292cbfb8770c7cf66420a7f1fe72f9263

    • SSDEEP

      24576:v6Zv2ivhBVnFys7xP86LXtqWJ/ej0qjVWg:vE2ivhQs7dLX/JkdIg

    Score
    8/10
    persistenceupx

    • Boot or Logon Autostart Execution: Active Setup

      Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.

      persistence

    • Executes dropped EXE

    • Modifies system executable filetype association

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks