f906f99d0cea3668af8e8b4d16671c2365d8e5190943114b8a3a136801914d9b | Triage

Submit
Reports

Overview

overview

Static

static

New_Active...34.exe

windows7_x64

1

New_Active...34.exe

windows10-2004_x64

Sharing

General

Target

New_Active_Pass_1234.exe
Size

5.1MB
Sample

220223-xkpt2scdfp
MD5

33ba1406d282fb20e5ddc34011e430c6
SHA1

8f92e1ebeb8508bb01464f1f7badc8d7a36b6706
SHA256

f906f99d0cea3668af8e8b4d16671c2365d8e5190943114b8a3a136801914d9b
SHA512

6e9508c675a023b358e3728ec0f74acd140af793d28b4737b18098d37310879fb26cc54d47a1d0740301dc41c641ae56e1e053b165a00ef3844cf0631051179f

Score

10^/10

Static task

static1

Behavioral task

behavioral1

Sample

New_Active_Pass_1234.exe

Resource

win7-en-20211208

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

New_Active_Pass_1234.exe

Resource

win10v2004-en-20220112

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  New_Active_Pass_1234.exe
- Size
  
  5.1MB
- MD5
  
  33ba1406d282fb20e5ddc34011e430c6
- SHA1
  
  8f92e1ebeb8508bb01464f1f7badc8d7a36b6706
- SHA256
  
  f906f99d0cea3668af8e8b4d16671c2365d8e5190943114b8a3a136801914d9b
- SHA512
  
  6e9508c675a023b358e3728ec0f74acd140af793d28b4737b18098d37310879fb26cc54d47a1d0740301dc41c641ae56e1e053b165a00ef3844cf0631051179f
Score

10^/10
- Suspicious use of NtCreateProcessExOtherParentProcess
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy