Overview

overview

8

Static

static

7

08a9328a47...15.exe

windows7-x64

8

08a9328a47...15.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    08a9328a47cd04c05f48def8750f18bc829db519e4577a7986f83602e541e015

  • Size

    448KB

  • Sample

    240805-w4ebzsxhrf

  • MD5

    9f368913c24ff6fcb56e514de61bcb35

  • SHA1

    2479240304a2e5690c1b482fd066ce7646f2eb73

  • SHA256

    08a9328a47cd04c05f48def8750f18bc829db519e4577a7986f83602e541e015

  • SHA512

    8cdbba410b1eb1113ff65645973e84bf0d7478261ca0fce75be8d174061141a524adb1dc6dcc2b1ea7db02acdbdf8f17f3e6421343d8d28b611e9e63e36797a3

  • SSDEEP

    6144:i4/LuS+WcPmKmsEsY9RqSs3JqyiZdMFKl:PL25msWs3AN

Score
8/10
discoverypersistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      08a9328a47cd04c05f48def8750f18bc829db519e4577a7986f83602e541e015

    • Size

      448KB

    • MD5

      9f368913c24ff6fcb56e514de61bcb35

    • SHA1

      2479240304a2e5690c1b482fd066ce7646f2eb73

    • SHA256

      08a9328a47cd04c05f48def8750f18bc829db519e4577a7986f83602e541e015

    • SHA512

      8cdbba410b1eb1113ff65645973e84bf0d7478261ca0fce75be8d174061141a524adb1dc6dcc2b1ea7db02acdbdf8f17f3e6421343d8d28b611e9e63e36797a3

    • SSDEEP

      6144:i4/LuS+WcPmKmsEsY9RqSs3JqyiZdMFKl:PL25msWs3AN

    Score
    8/10
    discoverypersistenceprivilege_escalationupx

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks