Overview

overview

8

Static

static

5

416d1283c3...0N.exe

windows7-x64

8

416d1283c3...0N.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    416d1283c3eea03bf60e4b17ce413c37d8291ed71083474f622c6a0c2abd6980N

  • Size

    1.1MB

  • Sample

    241002-gmjstazgrn

  • MD5

    021801fd781be5f46b59e0b6d9534e30

  • SHA1

    9249749dc06e13e7edde0c538271f22905936c4c

  • SHA256

    416d1283c3eea03bf60e4b17ce413c37d8291ed71083474f622c6a0c2abd6980

  • SHA512

    eb7ec992df879918f7a279532f507818d48e2976f088133723444ba8dfa55e682b7126b3708d1866d0be591c7b542af6f280f968536eeba0ead6f0d6b8be6d65

  • SSDEEP

    24576:v6Zv2ivhBVnFys7xP86LXtqWJ/eroQm2S7Tms2KF1x:vE2ivhQs7dLX/Jyb7S7TmsrT

Score
8/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      416d1283c3eea03bf60e4b17ce413c37d8291ed71083474f622c6a0c2abd6980N

    • Size

      1.1MB

    • MD5

      021801fd781be5f46b59e0b6d9534e30

    • SHA1

      9249749dc06e13e7edde0c538271f22905936c4c

    • SHA256

      416d1283c3eea03bf60e4b17ce413c37d8291ed71083474f622c6a0c2abd6980

    • SHA512

      eb7ec992df879918f7a279532f507818d48e2976f088133723444ba8dfa55e682b7126b3708d1866d0be591c7b542af6f280f968536eeba0ead6f0d6b8be6d65

    • SSDEEP

      24576:v6Zv2ivhBVnFys7xP86LXtqWJ/eroQm2S7Tms2KF1x:vE2ivhQs7dLX/Jyb7S7TmsrT

    Score
    8/10
    discoverypersistenceupx

    • Boot or Logon Autostart Execution: Active Setup

      Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.

      persistence

    • Executes dropped EXE

    • Modifies system executable filetype association

      persistence

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks