Overview

overview

10

Static

static

10

source_prepared.exe

windows7-x64

7

source_prepared.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    source_prepared.exe

  • Size

    12.5MB

  • Sample

    240707-2fzkxa1hld

  • MD5

    445d3219fb95863bc46bf9d6261fa761

  • SHA1

    251f28ecb6cc6f5c1b9e764e5e70c4dde854ee9e

  • SHA256

    3122f12761203ccd50927e4680c7e0b92b48f96bab4a43cc4e790f337801950d

  • SHA512

    448b65fae012e11f36eac3e872f40ef996f385044ccbf725bff036b639087d4cd31e2388fbabd6d0ba63d8345fe738cc19ab9c1983b92d6528bf2bc958e1976b

  • SSDEEP

    196608:9vlimxx+hK/CjTO/62WtaEJ2Hsx8tn2s03nfz1HkFsnP1PibIYxpkn+9D3pdks:9vgfj8Y1husnP1WuQpdks

Score
10/10
pysilonpyinstallerupx

Malware Config

Targets

    • Target

      source_prepared.exe

    • Size

      12.5MB

    • MD5

      445d3219fb95863bc46bf9d6261fa761

    • SHA1

      251f28ecb6cc6f5c1b9e764e5e70c4dde854ee9e

    • SHA256

      3122f12761203ccd50927e4680c7e0b92b48f96bab4a43cc4e790f337801950d

    • SHA512

      448b65fae012e11f36eac3e872f40ef996f385044ccbf725bff036b639087d4cd31e2388fbabd6d0ba63d8345fe738cc19ab9c1983b92d6528bf2bc958e1976b

    • SSDEEP

      196608:9vlimxx+hK/CjTO/62WtaEJ2Hsx8tn2s03nfz1HkFsnP1PibIYxpkn+9D3pdks:9vgfj8Y1husnP1WuQpdks

    Score
    7/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks