Overview

overview

8

Static

static

3

turbo.7z

windows11-21h2-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    turbo.7z

  • Size

    5.0MB

  • Sample

    250120-tgq16axmft

  • MD5

    8498da183d5095ba1cbcdf2f30bcf7e4

  • SHA1

    71601bafa9745e7c2fc0e05635a49d9b673224a9

  • SHA256

    a1b10f6d67b67edbdc49497adf66a0717ea361342774338f9781730e26758de5

  • SHA512

    91e64271d7d6f8985dafb5163ea5514292a3f49fc4f1605f6d1a2c7a25a1078f9da2a06f47dfd0097f8ad0fb500180188fc5e06bd2a7b52800cca17df446d456

  • SSDEEP

    98304:D+Rj2t8EDqZfzycM0qwNENOMYb0kSFXcKu3G9Htf/99PX2i7e1NIT:yRjWqgt0quE0/0bpHu3CHtjPGi7tT

Score
8/10
microsoftdefense_evasiondiscoveryphishingupx

Malware Config

Targets

    • Target

      turbo.7z

    • Size

      5.0MB

    • MD5

      8498da183d5095ba1cbcdf2f30bcf7e4

    • SHA1

      71601bafa9745e7c2fc0e05635a49d9b673224a9

    • SHA256

      a1b10f6d67b67edbdc49497adf66a0717ea361342774338f9781730e26758de5

    • SHA512

      91e64271d7d6f8985dafb5163ea5514292a3f49fc4f1605f6d1a2c7a25a1078f9da2a06f47dfd0097f8ad0fb500180188fc5e06bd2a7b52800cca17df446d456

    • SSDEEP

      98304:D+Rj2t8EDqZfzycM0qwNENOMYb0kSFXcKu3G9Htf/99PX2i7e1NIT:yRjWqgt0quE0/0bpHu3CHtjPGi7tT

    Score
    8/10
    microsoftdefense_evasiondiscoveryphishingupx

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Detected potential entity reuse from brand MICROSOFT.

      phishingmicrosoft

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks