Overview

overview

7

Static

static

7

1ST.exe

windows7-x64

7

1ST.exe

windows10-2004-x64

7

GRADIENTLOADER.exe

windows7-x64

7

GRADIENTLOADER.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    GRADIENT LOADER (2) (1) (1).zip

  • Size

    57.4MB

  • Sample

    240828-wpswtsygnc

  • MD5

    74d4b21cc1e43bac687d344a881d8f46

  • SHA1

    5ba6aaf49596e50a96ab264fee200310d9c2a283

  • SHA256

    9daf8956a7d609645cbf8ffd37a1edcbca1e3144f90d91a27c5cb096f31d6380

  • SHA512

    2e8be9f3d828330956c816aeb04d97b57df38e428645a31dac68b9281f3236765ac2df8e2a3a49aaef77164eb2d895cb3e9f240f0771b7a13eae06c6e4843e1d

  • SSDEEP

    1572864:ZpT/HLR2eY3PvuKjRIJZsVg8YK+gQ5CTbPmIQ:ZpT/Vm3RisVdg5C/PO

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      1ST.exe

    • Size

      447KB

    • MD5

      58008524a6473bdf86c1040a9a9e39c3

    • SHA1

      cb704d2e8df80fd3500a5b817966dc262d80ddb8

    • SHA256

      1ef6c1a4dfdc39b63bfe650ca81ab89510de6c0d3d7c608ac5be80033e559326

    • SHA512

      8cf492584303523bf6cdfeb6b1b779ee44471c91e759ce32fd4849547b6245d4ed86af5b38d1c6979729a77f312ba91c48207a332ae1589a6e25de67ffb96c31

    • SSDEEP

      6144:Vzv+kSn74iCmfianQGDM3OXTWRDy9GYQDUmJFXIXHrsUBnBTF8JJCYrYNsQJzfgu:Vzcn7EanlQiWtYhmJFSwUBLcQZfgiD

    Score
    7/10
    discoveryupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    behavioral1behavioral2

    • Target

      GRADIENTLOADER.exe

    • Size

      77.3MB

    • MD5

      b45cf666e05ab69fb67ddf7ff657a37b

    • SHA1

      ee616028d200b051badbb654b04e774ed28044d9

    • SHA256

      a4900cc7e7b2ebc6833eb89aba0a25f264b5a43086d17736031da7f2b1fe722d

    • SHA512

      b1a0e54fc68f957d365d6e986cfecdb25b2d0ee4bc7e4c0d0369456ca5758a986864db3ca7ded441a981e7becfaf8bfe86c32a46e0f11ac22f1d7f3760be8228

    • SSDEEP

      1572864:JxB7vFQqMrlpA+Ql4VdZvIe6MqQZ19Wb04xhMk:JxBJyklAZvNF/9e0eh

    Score
    7/10
    upx

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks