Overview

overview

10

Static

static

7

24fe2ef661...7N.exe

windows7-x64

10

24fe2ef661...7N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    24fe2ef6614eb3775abd903dac657746f2c21646b2779de556c01301f82945f7N

  • Size

    117KB

  • Sample

    240920-k5f2esyhkk

  • MD5

    a60e8754019e2c3bf775841131cd9390

  • SHA1

    0bf5976dd3b17a51a7909a9b5d222a30d05dd9dd

  • SHA256

    24fe2ef6614eb3775abd903dac657746f2c21646b2779de556c01301f82945f7

  • SHA512

    28a4d9f1ff3a9fd97a8658d3db402c1284b844e95729d967262473893d195ac61753b9483c9aba0636f57ffbd6064026878d8e5f2f648911ef6034fa07e659f4

  • SSDEEP

    1536:Uvm1Fu8AjYaFwjRnVaiszi/ABs4jRiupiDN5OGADzVgQ19/RfTO0UiDH1G:vu8ANC4qABsaRm5OdDxxvLHUj

Score
10/10
discoveryevasionpersistenceupx

Malware Config

Targets

    • Target

      24fe2ef6614eb3775abd903dac657746f2c21646b2779de556c01301f82945f7N

    • Size

      117KB

    • MD5

      a60e8754019e2c3bf775841131cd9390

    • SHA1

      0bf5976dd3b17a51a7909a9b5d222a30d05dd9dd

    • SHA256

      24fe2ef6614eb3775abd903dac657746f2c21646b2779de556c01301f82945f7

    • SHA512

      28a4d9f1ff3a9fd97a8658d3db402c1284b844e95729d967262473893d195ac61753b9483c9aba0636f57ffbd6064026878d8e5f2f648911ef6034fa07e659f4

    • SSDEEP

      1536:Uvm1Fu8AjYaFwjRnVaiszi/ABs4jRiupiDN5OGADzVgQ19/RfTO0UiDH1G:vu8ANC4qABsaRm5OdDxxvLHUj

    Score
    10/10
    discoveryevasionpersistenceupx

    • Modifies visibility of file extensions in Explorer

      evasion

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Network Share Discovery

      Attempt to gather information on host network.

      discovery

    • Power Settings

      powercfg controls all configurable power system settings on a Windows system and can be abused to prevent an infected host from locking or shutting down.

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks