Overview

overview

8

Static

static

7

945a3fe4eb...7b.exe

windows7-x64

8

945a3fe4eb...7b.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    945a3fe4eb4c06c1678515698db24527557ea4a0c1a26afc1a81eb7a232d727b

  • Size

    606KB

  • Sample

    240727-a8j75swckq

  • MD5

    0de51b93aa1417ccbd3cbf2f95f57863

  • SHA1

    9160ebfc4b5d6ce248d8d1385af8362d5cf31c58

  • SHA256

    945a3fe4eb4c06c1678515698db24527557ea4a0c1a26afc1a81eb7a232d727b

  • SHA512

    42f098a1fb87d9380f089706965f1636fbd4929f64d2d436f5b2b7688876f2a4bb50495a0235ed51eb2b3bbe7b4f71fafcbaf1cf9c01aa86392ec7e71b1b7683

  • SSDEEP

    12288:7tKe6Zv23YLVFhBsC8iFHs+hsuQXIQRUP/g8t5P4SiAd:v6Zv2ivhBVnFvh5Q44UP48Rd

Score
8/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      945a3fe4eb4c06c1678515698db24527557ea4a0c1a26afc1a81eb7a232d727b

    • Size

      606KB

    • MD5

      0de51b93aa1417ccbd3cbf2f95f57863

    • SHA1

      9160ebfc4b5d6ce248d8d1385af8362d5cf31c58

    • SHA256

      945a3fe4eb4c06c1678515698db24527557ea4a0c1a26afc1a81eb7a232d727b

    • SHA512

      42f098a1fb87d9380f089706965f1636fbd4929f64d2d436f5b2b7688876f2a4bb50495a0235ed51eb2b3bbe7b4f71fafcbaf1cf9c01aa86392ec7e71b1b7683

    • SSDEEP

      12288:7tKe6Zv23YLVFhBsC8iFHs+hsuQXIQRUP/g8t5P4SiAd:v6Zv2ivhBVnFvh5Q44UP48Rd

    Score
    8/10
    discoverypersistenceupx

    • Boot or Logon Autostart Execution: Active Setup

      Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.

      persistence

    • Executes dropped EXE

    • Modifies system executable filetype association

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks