Overview

overview

8

Static

static

7

a3f5986c1d...0N.exe

windows7-x64

8

a3f5986c1d...0N.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a3f5986c1d660037698463a3a66d9360N.exe

  • Size

    968KB

  • Sample

    240805-sf1zastdma

  • MD5

    a3f5986c1d660037698463a3a66d9360

  • SHA1

    e88316b1a099bea21df9c25be9a87c2bbcc9f02d

  • SHA256

    2348b49f723e80bb2a22050a4a5a17a9ec7847cb0a6871f4cfaf2d61a3461a07

  • SHA512

    cb541f1024ac5757145890ca1ad828a0dc04604448a5ca11f8d1b813b40d1d59948159e7db1dcb6833592db5a147d47572daafb68d96b297b7da99c8e21be2cd

  • SSDEEP

    24576:v6Zv2ivhBVnFys7xP86Lh7uhmh8VZ7i/+XAmvYSFdbRPIbgRrgW:vE2ivhQs7dLNuhmuVZ7iHmv5FJRIqZ

Score
8/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      a3f5986c1d660037698463a3a66d9360N.exe

    • Size

      968KB

    • MD5

      a3f5986c1d660037698463a3a66d9360

    • SHA1

      e88316b1a099bea21df9c25be9a87c2bbcc9f02d

    • SHA256

      2348b49f723e80bb2a22050a4a5a17a9ec7847cb0a6871f4cfaf2d61a3461a07

    • SHA512

      cb541f1024ac5757145890ca1ad828a0dc04604448a5ca11f8d1b813b40d1d59948159e7db1dcb6833592db5a147d47572daafb68d96b297b7da99c8e21be2cd

    • SSDEEP

      24576:v6Zv2ivhBVnFys7xP86Lh7uhmh8VZ7i/+XAmvYSFdbRPIbgRrgW:vE2ivhQs7dLNuhmuVZ7iHmv5FJRIqZ

    Score
    8/10
    discoverypersistenceupx

    • Boot or Logon Autostart Execution: Active Setup

      Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.

      persistence

    • Executes dropped EXE

    • Modifies system executable filetype association

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks