General

  • Target

    External.exe

  • Size

    32.0MB

  • Sample

    240628-fqpb2asfla

  • MD5

    dfe041995ea15fc58d8ed221c8efc1c5

  • SHA1

    af75bad23eb3b7c95de34ad970347b6d4c36c53e

  • SHA256

    77485b3dd3de77a3e69379b255b4aca8a76c9fb62e3f3ae9905d7b8d75cd82df

  • SHA512

    58caf6314920f680f3a1b741fb9f8b2b4145a728795e4e3c39cdf93ce907541dc2e79bdf4bc3f9979d1d61b22cf5ed3feac93e676a7fad02910c98d002735ed1

  • SSDEEP

    98304:W3vITB2lUZXAMhamaHl3Ne4i3lqoFhTWrf9eQc0MJYzwZNqOSpXq3z5Zs5J1n6kR:WfIqMceNlpYfMQc2sDSEUhn6ksVe

Malware Config

Targets

    • Target

      External.exe

    • Size

      32.0MB

    • MD5

      dfe041995ea15fc58d8ed221c8efc1c5

    • SHA1

      af75bad23eb3b7c95de34ad970347b6d4c36c53e

    • SHA256

      77485b3dd3de77a3e69379b255b4aca8a76c9fb62e3f3ae9905d7b8d75cd82df

    • SHA512

      58caf6314920f680f3a1b741fb9f8b2b4145a728795e4e3c39cdf93ce907541dc2e79bdf4bc3f9979d1d61b22cf5ed3feac93e676a7fad02910c98d002735ed1

    • SSDEEP

      98304:W3vITB2lUZXAMhamaHl3Ne4i3lqoFhTWrf9eQc0MJYzwZNqOSpXq3z5Zs5J1n6kR:WfIqMceNlpYfMQc2sDSEUhn6ksVe

    Score
    8/10
    • Command and Scripting Interpreter: PowerShell

      Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      �>��;��.pyc

    • Size

      1KB

    • MD5

      d1191812dc65a84bd6c507189cb5c375

    • SHA1

      b47c7502ade96d3fa79b0b8ab58cd8223449f930

    • SHA256

      f3a0b3b122f5cd5621a0792e8f6a7c8a6699ef6429429a62033e2106245a6de5

    • SHA512

      5b0c09612d5e6521524ab1ca7ffaf70bfef6e10ba551102eb8990dbad2532d95723f6caebd2867235a4d354b9a404869090fec1633e913df3d1429b46789344c

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks