Overview

overview

10

Static

static

5

274228c47a...7N.exe

windows7-x64

10

274228c47a...7N.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    274228c47ac8273c1f9b190d3faa4ee402211077c4352113c2c03f293686fe07N

  • Size

    19KB

  • Sample

    241009-pg1hdathqm

  • MD5

    1ae300b2ec0f09a05e707b7b00842e90

  • SHA1

    c403f132aaaa9a3b41ffed926aa9038b7906ce86

  • SHA256

    274228c47ac8273c1f9b190d3faa4ee402211077c4352113c2c03f293686fe07

  • SHA512

    389d3537e5175e3e297593a5f0c55c3a8fe04039c9b7429ceabe2c80a4fb9fc26e95d5c3575d9030ff913e2a2aced80174dc3179967ff5794c026319c3e25d33

  • SSDEEP

    384:g58AcUoUQKNRYELxQUHDvmk3E+KDvB77777J77c77c77c72qh5t1+4+EvzuO5HpD:g5BOFKksO1mE9B77777J77c77c77c71L

Score
10/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      274228c47ac8273c1f9b190d3faa4ee402211077c4352113c2c03f293686fe07N

    • Size

      19KB

    • MD5

      1ae300b2ec0f09a05e707b7b00842e90

    • SHA1

      c403f132aaaa9a3b41ffed926aa9038b7906ce86

    • SHA256

      274228c47ac8273c1f9b190d3faa4ee402211077c4352113c2c03f293686fe07

    • SHA512

      389d3537e5175e3e297593a5f0c55c3a8fe04039c9b7429ceabe2c80a4fb9fc26e95d5c3575d9030ff913e2a2aced80174dc3179967ff5794c026319c3e25d33

    • SSDEEP

      384:g58AcUoUQKNRYELxQUHDvmk3E+KDvB77777J77c77c77c72qh5t1+4+EvzuO5HpD:g5BOFKksO1mE9B77777J77c77c77c71L

    Score
    10/10
    discoverypersistenceupx

    • Modifies WinLogon for persistence

      persistence

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks