Overview

overview

6

Static

static

3

patches.ini

windows10-2004-x64

1

uniws.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    uniws.zip

  • Size

    299KB

  • Sample

    240915-pag3fstejp

  • MD5

    5d7381994dd80284e67e00b5075b58d3

  • SHA1

    32e8d8b7057538f322de99fdaa99bcc7cc691b06

  • SHA256

    c14f35e5bfe65cdda8de74e160183c0c6bf0602413bc32c26af0a3473e5a5c18

  • SHA512

    44b92624cde8d9c147cb1ca8ea22dd119977eb1e01a6f709455243f9fd2cc4b4e465e6a97123358c87d762f704a2132deaaf2963c95bc3cf17bfc18238a40d1a

  • SSDEEP

    6144:HeT+Q89o17ucsGR1J20O61rqPvgZaBy39Rbg4HIBxbot0TxzcIJ+B:q+k17ucx0PvXytRbg4oHb+0FzcIwB

Score
6/10
discovery

Malware Config

Targets

    • Target

      patches.ini

    • Size

      13KB

    • MD5

      64b01e5adb3c9a63e589dded482a1412

    • SHA1

      b6397d166332dd2d18879c31f1b90a451b331139

    • SHA256

      45710218fc2555ed634fb1ae81943fa3d6034b63171822c51091758b3784daf1

    • SHA512

      25b94d348ccc08fdac04e52c300002f74d6f0196941faed7122218feb11deb1da1d5fd31def0368d68f370880cece0ce73aa220becf2b07b40a4ecaf75475747

    • SSDEEP

      384:KAo2mNZrbE7iAQzccHte590zBhMce59AzaCSe9CgcdfjKzfvVerPgPd8zogjHe50:8ymKf

    Score
    1/10
    behavioral1

    • Target

      uniws.exe

    • Size

      580KB

    • MD5

      cb5131426cc3945f6a9fa10d4e638f9a

    • SHA1

      6611f22cb605613c442fc3769fd9a2a31c8079d1

    • SHA256

      c0cecad9532690e093cdbaf23ad930e43b075f809db8c9d158caa0c3e1a730ed

    • SHA512

      42577796e72c0ff9c5640167e2453846dbc148380305cf4a79414dd281963ab4ba23b5643a2335f6f4312a97ed5123be42ed6b4ed1f7ac1fa6217097beaae4e6

    • SSDEEP

      12288:QzkA5Es/O4Ba4ip6hSa1gcK3jvz2uT3QtQp:jKE2Ba4WsKTvGQ

    Score
    6/10
    discovery

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral2

MITRE ATT&CK Enterprise v15

Tasks