Overview

overview

10

Static

static

7

fbb5eeedf8...fN.exe

windows7-x64

10

fbb5eeedf8...fN.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fbb5eeedf873a1a308d1d4ea2975da64b3023172ee6db9cd5bcfcd258a15dbefN

  • Size

    88KB

  • Sample

    240919-d8n3wazapj

  • MD5

    ec42ac02d01e182bb93a8745d271f2b0

  • SHA1

    612fd3e37ade71c9914384efedeb20a535f44d87

  • SHA256

    fbb5eeedf873a1a308d1d4ea2975da64b3023172ee6db9cd5bcfcd258a15dbef

  • SHA512

    4757af1a19c8e2dc460abab671d8cf40b4fa1655cb32331584a820ad3d5ffed30a609ec1f633ef89454487e5ef2d7697af3ebad6dff083802cc9a675f45818d2

  • SSDEEP

    768:/pQNwC3BESe4Vqth+0V5vKmyLylze70wi3BEmn:BeT7BVwxfvEFwjRn

Score
10/10
discoveryevasionpersistenceupx

Malware Config

Targets

    • Target

      fbb5eeedf873a1a308d1d4ea2975da64b3023172ee6db9cd5bcfcd258a15dbefN

    • Size

      88KB

    • MD5

      ec42ac02d01e182bb93a8745d271f2b0

    • SHA1

      612fd3e37ade71c9914384efedeb20a535f44d87

    • SHA256

      fbb5eeedf873a1a308d1d4ea2975da64b3023172ee6db9cd5bcfcd258a15dbef

    • SHA512

      4757af1a19c8e2dc460abab671d8cf40b4fa1655cb32331584a820ad3d5ffed30a609ec1f633ef89454487e5ef2d7697af3ebad6dff083802cc9a675f45818d2

    • SSDEEP

      768:/pQNwC3BESe4Vqth+0V5vKmyLylze70wi3BEmn:BeT7BVwxfvEFwjRn

    Score
    10/10
    discoveryevasionpersistenceupx

    • Modifies visibility of file extensions in Explorer

      evasion

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Network Share Discovery

      Attempt to gather information on host network.

      discovery

    • Power Settings

      powercfg controls all configurable power system settings on a Windows system and can be abused to prevent an infected host from locking or shutting down.

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks