Overview

overview

6

Static

static

5

upd-ps-x64...85.exe

windows7-x64

6

upd-ps-x64...85.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    upd-ps-x64-5.9.0.1832682_437685.exe

  • Size

    652KB

  • Sample

    240929-w81qsayglh

  • MD5

    5dfc3eefe1c51312d0020910020c4025

  • SHA1

    8e6ab92a5d138b3f997ee0a12bb2438e82236760

  • SHA256

    7cff549b9b283c2124a963526762625ac3a476ced39bab1afb2cf1accd3249d0

  • SHA512

    6be0d92564a380dff41d2960d32e17fe81c0340dbb09a1207a109fa0f584a75e066bbc3a26f5d53f4a62037fd09938a3729d2f595100c7b26bacea38e5e4a6cd

  • SSDEEP

    12288:MC6wyk1nvfBP0FQoOd/566f81qjbravk7o3xLWAB8TMfo+aqwFtaif8dHOqPNspr:MC6wp1vfhboOb66Uyavk8hdo+g8BOONi

Score
6/10
bootkitdiscoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      upd-ps-x64-5.9.0.1832682_437685.exe

    • Size

      652KB

    • MD5

      5dfc3eefe1c51312d0020910020c4025

    • SHA1

      8e6ab92a5d138b3f997ee0a12bb2438e82236760

    • SHA256

      7cff549b9b283c2124a963526762625ac3a476ced39bab1afb2cf1accd3249d0

    • SHA512

      6be0d92564a380dff41d2960d32e17fe81c0340dbb09a1207a109fa0f584a75e066bbc3a26f5d53f4a62037fd09938a3729d2f595100c7b26bacea38e5e4a6cd

    • SSDEEP

      12288:MC6wyk1nvfBP0FQoOd/566f81qjbravk7o3xLWAB8TMfo+aqwFtaif8dHOqPNspr:MC6wp1vfhboOb66Uyavk8hdo+g8BOONi

    Score
    6/10
    bootkitdiscoverypersistencespywarestealerupx

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks