0b95798bc058e646de410838ab6a40b1f2010dd1e36bf015fa27bcf65f9723ff | Triage

Submit
Reports

Overview

overview

Static

static

7

0b95798bc0...ff.exe

windows7_x64

3

0b95798bc0...ff.exe

windows10-2004_x64

Sharing

General

Target

0b95798bc058e646de410838ab6a40b1f2010dd1e36bf015fa27bcf65f9723ff
Size

2.5MB
Sample

220215-s6daxshghr
MD5

a8e2395bf8261ed76c136fb9a86d1b5b
SHA1

8685fbbdc34b72b99c955d5b77736230b758564c
SHA256

0b95798bc058e646de410838ab6a40b1f2010dd1e36bf015fa27bcf65f9723ff
SHA512

188159bc5d8d826b8d2845e30c58637000a4d012e63c42a46666c8c38adad31f7f396c6a06776090ba377b499dcd4304678268c3ab8b09b8b56b20b922ef2c42

Score

10^/10

themida

Static task

static1

Behavioral task

behavioral1

Sample

0b95798bc058e646de410838ab6a40b1f2010dd1e36bf015fa27bcf65f9723ff.exe

Resource

win7-en-20211208

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

0b95798bc058e646de410838ab6a40b1f2010dd1e36bf015fa27bcf65f9723ff.exe

Resource

win10v2004-en-20220112

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  0b95798bc058e646de410838ab6a40b1f2010dd1e36bf015fa27bcf65f9723ff
- Size
  
  2.5MB
- MD5
  
  a8e2395bf8261ed76c136fb9a86d1b5b
- SHA1
  
  8685fbbdc34b72b99c955d5b77736230b758564c
- SHA256
  
  0b95798bc058e646de410838ab6a40b1f2010dd1e36bf015fa27bcf65f9723ff
- SHA512
  
  188159bc5d8d826b8d2845e30c58637000a4d012e63c42a46666c8c38adad31f7f396c6a06776090ba377b499dcd4304678268c3ab8b09b8b56b20b922ef2c42
Score

10^/10
- Suspicious use of NtCreateProcessExOtherParentProcess
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy