b3792344349e0098677dada628c8ded11b2bbde2fbb24dd123e3ac94239252ab | Triage

Submit
Reports

Overview

overview

8

Static

static

8

b379234434...ab.exe

windows7_x64

8

b379234434...ab.exe

windows10_x64

8

Sharing

General

Target

b3792344349e0098677dada628c8ded11b2bbde2fbb24dd123e3ac94239252ab
Size

425KB
Sample

210513-535gdb8vws
MD5

b867e9a0a1f0125b4968d066d9073893
SHA1

209397872f904f5728390d53c493b4047bc9c420
SHA256

b3792344349e0098677dada628c8ded11b2bbde2fbb24dd123e3ac94239252ab
SHA512

66a99ef3541ed7a5e07c18bede0bcce2ffa2711d48d5f52068f51bc01c4f707bdea10a9edcb7d6b019695630af3103ba567f9919c03d97ef820a14fc2aa992d3

Score

8^/10

persistence upx

Static task

static1

Behavioral task

behavioral1

Sample

b3792344349e0098677dada628c8ded11b2bbde2fbb24dd123e3ac94239252ab.exe

Resource

win7v20210408

persistence upx

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

b3792344349e0098677dada628c8ded11b2bbde2fbb24dd123e3ac94239252ab.exe

Resource

win10v20210410

persistence upx

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  b3792344349e0098677dada628c8ded11b2bbde2fbb24dd123e3ac94239252ab
- Size
  
  425KB
- MD5
  
  b867e9a0a1f0125b4968d066d9073893
- SHA1
  
  209397872f904f5728390d53c493b4047bc9c420
- SHA256
  
  b3792344349e0098677dada628c8ded11b2bbde2fbb24dd123e3ac94239252ab
- SHA512
  
  66a99ef3541ed7a5e07c18bede0bcce2ffa2711d48d5f52068f51bc01c4f707bdea10a9edcb7d6b019695630af3103ba567f9919c03d97ef820a14fc2aa992d3
Score

8^/10

persistence upx
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy