Overview

overview

10

Static

static

10

7771006c1e...e3.exe

windows7-x64

7

7771006c1e...e3.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7771006c1e0d28821fd163924ae06e9e1a145b4911de6024afe7c663d38012e3.exe

  • Size

    2.9MB

  • Sample

    250121-t9yxgatmer

  • MD5

    3a7a07b67fd43153769a9f06ea533460

  • SHA1

    8f852aca65fac39dbff14f39cb145aa9c0ab88d2

  • SHA256

    7771006c1e0d28821fd163924ae06e9e1a145b4911de6024afe7c663d38012e3

  • SHA512

    b64424e0c40472a150555883224ddeca538d0207d2e1da8e2022fdf3d3dee06a1b6cbf630f3d8f4744c514d44fa98acb7247e24a0f1980632cdbc8143e642377

  • SSDEEP

    24576:ATU7AAmZZcVKfIxTiEVc847flVC6faaQDbGV6eH81k6IbGD2JTu0GoZQDbGV6eHD:ATU7AAmw4gxeOw46fUbNecCCFbNece

Score
10/10
warzoneratdiscoverypersistenceratupx

Malware Config

Targets

    • Target

      7771006c1e0d28821fd163924ae06e9e1a145b4911de6024afe7c663d38012e3.exe

    • Size

      2.9MB

    • MD5

      3a7a07b67fd43153769a9f06ea533460

    • SHA1

      8f852aca65fac39dbff14f39cb145aa9c0ab88d2

    • SHA256

      7771006c1e0d28821fd163924ae06e9e1a145b4911de6024afe7c663d38012e3

    • SHA512

      b64424e0c40472a150555883224ddeca538d0207d2e1da8e2022fdf3d3dee06a1b6cbf630f3d8f4744c514d44fa98acb7247e24a0f1980632cdbc8143e642377

    • SSDEEP

      24576:ATU7AAmZZcVKfIxTiEVc847flVC6faaQDbGV6eH81k6IbGD2JTu0GoZQDbGV6eHD:ATU7AAmw4gxeOw46fUbNecCCFbNece

    Score
    7/10
    discoverypersistenceupx

    • Drops startup file

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks