General

  • Target

    um.exe

  • Size

    1.2MB

  • Sample

    250119-yrz42atkcs

  • MD5

    0ef995828e94fbf59ba64916cfee4fe8

  • SHA1

    8f2240da17f35fc7f7266d195ce3a78da08858e9

  • SHA256

    8d21b8fb9cb680e54a61b87710a3977117086b98b51f3f42272fe16d84d41177

  • SHA512

    767512bb37fa4cf6b422a5a490cb97f20d3005c8c393cf2609facc35942e937916098c435a4ad0b7324b03f0bdf5b0e878e57443988b16739fbe2df7ea7ea36d

  • SSDEEP

    24576:+ntWeH+w5lRpO8ZmLH25OYgysyJAbVSYMxaweyIX7nQMl0QyijKPqfn0c+ZfT5:+nfHnHRpTgH25Ah58a1fX7nQMl0Qyij2

Score
8/10

Malware Config

Targets

    • Target

      um.exe

    • Size

      1.2MB

    • MD5

      0ef995828e94fbf59ba64916cfee4fe8

    • SHA1

      8f2240da17f35fc7f7266d195ce3a78da08858e9

    • SHA256

      8d21b8fb9cb680e54a61b87710a3977117086b98b51f3f42272fe16d84d41177

    • SHA512

      767512bb37fa4cf6b422a5a490cb97f20d3005c8c393cf2609facc35942e937916098c435a4ad0b7324b03f0bdf5b0e878e57443988b16739fbe2df7ea7ea36d

    • SSDEEP

      24576:+ntWeH+w5lRpO8ZmLH25OYgysyJAbVSYMxaweyIX7nQMl0QyijKPqfn0c+ZfT5:+nfHnHRpTgH25Ah58a1fX7nQMl0Qyij2

    Score
    8/10
    • Downloads MZ/PE file

    • Executes dropped EXE

    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

MITRE ATT&CK Enterprise v15

Tasks