Overview

overview

8

Static

static

7

7a1fb5d786...0N.exe

windows7-x64

8

7a1fb5d786...0N.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    7a1fb5d78677d5f5e627a73064c7dda0N.exe

  • Size

    997KB

  • Sample

    240824-kzma9asfja

  • MD5

    7a1fb5d78677d5f5e627a73064c7dda0

  • SHA1

    63aa94d491d7925477a3f07c355dd46f04180f63

  • SHA256

    8ea9a9d8ed48653d746b9d46183b4381e13b5051d0c047871db27c159042696c

  • SHA512

    e70033f9705fec906313918c9ea7c8fbccd65fbc3453df0859bc46f4db4daabfbcc675d06d3d548b2da49f62398a4c362c814c1561de8a31c85576c4a4659b4e

  • SSDEEP

    24576:v6Zv2ivhBVnFys7xP86LXtqIWwUWobTviNpWMTMOx0HqO3:vE2ivhQs7dLXrWrbbiNp6KO3

Score
8/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      7a1fb5d78677d5f5e627a73064c7dda0N.exe

    • Size

      997KB

    • MD5

      7a1fb5d78677d5f5e627a73064c7dda0

    • SHA1

      63aa94d491d7925477a3f07c355dd46f04180f63

    • SHA256

      8ea9a9d8ed48653d746b9d46183b4381e13b5051d0c047871db27c159042696c

    • SHA512

      e70033f9705fec906313918c9ea7c8fbccd65fbc3453df0859bc46f4db4daabfbcc675d06d3d548b2da49f62398a4c362c814c1561de8a31c85576c4a4659b4e

    • SSDEEP

      24576:v6Zv2ivhBVnFys7xP86LXtqIWwUWobTviNpWMTMOx0HqO3:vE2ivhQs7dLXrWrbbiNp6KO3

    Score
    8/10
    discoverypersistenceupx

    • Boot or Logon Autostart Execution: Active Setup

      Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.

      persistence

    • Executes dropped EXE

    • Modifies system executable filetype association

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks