Overview

overview

8

Static

static

7

787fe8fdbf...0N.exe

windows7-x64

8

787fe8fdbf...0N.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    787fe8fdbf111a661f01c91d56a61500N.exe

  • Size

    1.0MB

  • Sample

    240823-a397dayfmj

  • MD5

    787fe8fdbf111a661f01c91d56a61500

  • SHA1

    2bc5529851c2c79fc064b4e3196508e27085a846

  • SHA256

    cce6964c5568596aa578ff189c94741ba7e1156ed5bace07eec63824834db053

  • SHA512

    02392bff5d3a9770d48574321f6262b43a1d48e0fc554f1e0fdbeffded2716570d0d8b39379e7de4bed1f438b4b1df5a4e7faf9c92b97d7db11b30ab73de1399

  • SSDEEP

    24576:v6Zv2ivhBVnFys7xP86Lh7uhmh8VZ7i/+XAmvYSFdbRPIbgRrhQKNz5:vE2ivhQs7dLNuhmuVZ7iHmv5FJRIq6GV

Score
8/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      787fe8fdbf111a661f01c91d56a61500N.exe

    • Size

      1.0MB

    • MD5

      787fe8fdbf111a661f01c91d56a61500

    • SHA1

      2bc5529851c2c79fc064b4e3196508e27085a846

    • SHA256

      cce6964c5568596aa578ff189c94741ba7e1156ed5bace07eec63824834db053

    • SHA512

      02392bff5d3a9770d48574321f6262b43a1d48e0fc554f1e0fdbeffded2716570d0d8b39379e7de4bed1f438b4b1df5a4e7faf9c92b97d7db11b30ab73de1399

    • SSDEEP

      24576:v6Zv2ivhBVnFys7xP86Lh7uhmh8VZ7i/+XAmvYSFdbRPIbgRrhQKNz5:vE2ivhQs7dLNuhmuVZ7iHmv5FJRIq6GV

    Score
    8/10
    discoverypersistenceupx

    • Boot or Logon Autostart Execution: Active Setup

      Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.

      persistence

    • Executes dropped EXE

    • Modifies system executable filetype association

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks