Overview

overview

10

Static

static

10

dist.exe

windows10-2004-x64

9

Resubmissions

30-10-2024 02:21

241030-cs633svbma 10

29-10-2024 23:27

241029-3feq6s1jet 10

29-10-2024 22:34

241029-2hbxma1dqb 10

26-10-2024 15:18

241026-spxcgavhme 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dist.exe

  • Size

    77.5MB

  • Sample

    241030-cs633svbma

  • MD5

    8c3b39dc535007ad0182bba6ca3bd65c

  • SHA1

    c94939823c707aa860e627089cd30fcb016ae26b

  • SHA256

    893926efe19fd358908bff4c288ed54526e2e51ac565c02fdd8dcc1eeed2e7a6

  • SHA512

    274e8234ef08432e28fb8c06976e4f6063720f1001543671c5674dd7b7d081119e9601e339127d49f9045845fce51af7b62ed1d6740b069ba20ca27a07a408ee

  • SSDEEP

    1572864:T1lVWx50hSk8IpG7V+VPhqZxE7LlhpBB8iYweyJulZUdgP7tevMTzqv2ZH1O3:T1byySkB05awZeLpnNpur7MvMXjrO3

Score
10/10
pysilonevasionexecutionpersistencepyinstallerupx

Malware Config

Targets

    • Target

      dist.exe

    • Size

      77.5MB

    • MD5

      8c3b39dc535007ad0182bba6ca3bd65c

    • SHA1

      c94939823c707aa860e627089cd30fcb016ae26b

    • SHA256

      893926efe19fd358908bff4c288ed54526e2e51ac565c02fdd8dcc1eeed2e7a6

    • SHA512

      274e8234ef08432e28fb8c06976e4f6063720f1001543671c5674dd7b7d081119e9601e339127d49f9045845fce51af7b62ed1d6740b069ba20ca27a07a408ee

    • SSDEEP

      1572864:T1lVWx50hSk8IpG7V+VPhqZxE7LlhpBB8iYweyJulZUdgP7tevMTzqv2ZH1O3:T1byySkB05awZeLpnNpur7MvMXjrO3

    Score
    9/10
    evasionexecutionpersistenceupx

    • Enumerates VirtualBox DLL files

    • Command and Scripting Interpreter: PowerShell

      Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.

      execution

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

      evasion

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks