Overview

overview

7

Static

static

7

c4caee4219...29.exe

windows7-x64

7

c4caee4219...29.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    c4caee4219f27838e36978a0371c12eef97847e55880a8a25f3a1580e973f429

  • Size

    510KB

  • Sample

    240809-ch8h6avdrn

  • MD5

    375daa54aa84b728615c190c88e6298b

  • SHA1

    1fd5cc00dfa8e88eb6e5685829f41c52babd493d

  • SHA256

    c4caee4219f27838e36978a0371c12eef97847e55880a8a25f3a1580e973f429

  • SHA512

    e5073b5fa155f0b7a47aad0c0675a698d250d5cf31cba29821f11f19534a74919d900e35c6d8ec4ee16abac5fb76aa707817538d023b4b636ab2ed60e811ae44

  • SSDEEP

    12288:KkheH6hZYOYrInJ0JvQNy0+wcXP46sBmbvsTlgGrLfhtjQcK:KkheahZnnJsvQNy0+wcXPkB9Tbfht6

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      c4caee4219f27838e36978a0371c12eef97847e55880a8a25f3a1580e973f429

    • Size

      510KB

    • MD5

      375daa54aa84b728615c190c88e6298b

    • SHA1

      1fd5cc00dfa8e88eb6e5685829f41c52babd493d

    • SHA256

      c4caee4219f27838e36978a0371c12eef97847e55880a8a25f3a1580e973f429

    • SHA512

      e5073b5fa155f0b7a47aad0c0675a698d250d5cf31cba29821f11f19534a74919d900e35c6d8ec4ee16abac5fb76aa707817538d023b4b636ab2ed60e811ae44

    • SSDEEP

      12288:KkheH6hZYOYrInJ0JvQNy0+wcXP46sBmbvsTlgGrLfhtjQcK:KkheahZnnJsvQNy0+wcXPkB9Tbfht6

    Score
    7/10
    discoverypersistenceupx

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks