Overview

overview

8

Static

static

1

config.json

windows10-2004-x64

8

config.json

windows11-21h2-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    config.json

  • Size

    681B

  • Sample

    240823-fk7leswenc

  • MD5

    bf1430cac51d40a83d3477067b23971d

  • SHA1

    4a31a464a569b67a72a807ac0162ba182705e2b4

  • SHA256

    cffb0448e96c91866835ef023868b5e14a96a064997909f5c8c2efa9b6f85897

  • SHA512

    5f9a39bdfacecd39cdf270931512c269a8d042b246e39824f9764d8eb9c027ec4680bd86e8d7a1adcd9eaad4826a4054aa4b529c3829a32511c95ae30570e7dd

Score
8/10
discoveryevasiontrojanupx

Malware Config

Targets

    • Target

      config.json

    • Size

      681B

    • MD5

      bf1430cac51d40a83d3477067b23971d

    • SHA1

      4a31a464a569b67a72a807ac0162ba182705e2b4

    • SHA256

      cffb0448e96c91866835ef023868b5e14a96a064997909f5c8c2efa9b6f85897

    • SHA512

      5f9a39bdfacecd39cdf270931512c269a8d042b246e39824f9764d8eb9c027ec4680bd86e8d7a1adcd9eaad4826a4054aa4b529c3829a32511c95ae30570e7dd

    Score
    8/10
    discoveryevasiontrojanupx

    • Downloads MZ/PE file

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Checks whether UAC is enabled

      evasiontrojan
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks