Overview

overview

6

Static

static

3

loaders.exe

windows7-x64

1

loaders.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    loaders.exe

  • Size

    61.0MB

  • Sample

    240909-xpevmswfpd

  • MD5

    c317dc84cefc3d3b4213d1ff2ca17c44

  • SHA1

    b2c89a5006d94b910f02a9bac49ba778e5d702c1

  • SHA256

    758e781daa9b78cddc8717d00815bb2244e85d9bdd0ddccb5248120f554d2994

  • SHA512

    8da10acbbdb3472a0c5d15a0d8dc19e5cd72966be5c5db5bd866afb1a9f15971314fea9300b19bcedf819b0d6938c0b7b1096094a1d18f4744f807022809df58

  • SSDEEP

    1572864:/zYOEE5qpvRXHntzhHoQVT+atZumd+eAKGg:/0OEXvRXNdD5L

Score
6/10
discovery

Malware Config

Targets

    • Target

      loaders.exe

    • Size

      61.0MB

    • MD5

      c317dc84cefc3d3b4213d1ff2ca17c44

    • SHA1

      b2c89a5006d94b910f02a9bac49ba778e5d702c1

    • SHA256

      758e781daa9b78cddc8717d00815bb2244e85d9bdd0ddccb5248120f554d2994

    • SHA512

      8da10acbbdb3472a0c5d15a0d8dc19e5cd72966be5c5db5bd866afb1a9f15971314fea9300b19bcedf819b0d6938c0b7b1096094a1d18f4744f807022809df58

    • SSDEEP

      1572864:/zYOEE5qpvRXHntzhHoQVT+atZumd+eAKGg:/0OEXvRXNdD5L

    Score
    6/10
    discovery

    • Modifies boot configuration data using bcdedit

    • Drops file in System32 directory

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks