Overview

overview

7

Static

static

7

ea0c6c5e07...42.exe

windows7-x64

7

ea0c6c5e07...42.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ea0c6c5e07e4f64c44585840c33813b643d9560d2caf584b9d6962e60e1e6f42

  • Size

    839KB

  • Sample

    240819-dcjtaazgmd

  • MD5

    803f39a10c4016eac37d86cd4b5e47c9

  • SHA1

    2f3b456b5d398c45c912a7d7240830114db31572

  • SHA256

    ea0c6c5e07e4f64c44585840c33813b643d9560d2caf584b9d6962e60e1e6f42

  • SHA512

    cf4354345c612c56e2aac2719199fdeddda8f8c98556280aede08a40601fbda46d87a05ec96bbaa2bb06ee120a77adacc3ce87b82eb85607d23a7cf83696b932

  • SSDEEP

    12288:E8kxNhOZElO5kkWjhD4AI/GtAtScw3qEKBaGtAtScw3qEKB:7qEkfFP145J145

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      ea0c6c5e07e4f64c44585840c33813b643d9560d2caf584b9d6962e60e1e6f42

    • Size

      839KB

    • MD5

      803f39a10c4016eac37d86cd4b5e47c9

    • SHA1

      2f3b456b5d398c45c912a7d7240830114db31572

    • SHA256

      ea0c6c5e07e4f64c44585840c33813b643d9560d2caf584b9d6962e60e1e6f42

    • SHA512

      cf4354345c612c56e2aac2719199fdeddda8f8c98556280aede08a40601fbda46d87a05ec96bbaa2bb06ee120a77adacc3ce87b82eb85607d23a7cf83696b932

    • SSDEEP

      12288:E8kxNhOZElO5kkWjhD4AI/GtAtScw3qEKBaGtAtScw3qEKB:7qEkfFP145J145

    Score
    7/10
    discoverypersistenceupx

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies system executable filetype association

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks