5f29fd9ee6f0e3cfc7b58babf0603aec4b80ff798e51d5d18e5051bcf7aa1415 | Triage

Submit
Reports

Overview

overview

Static

static

5f29fd9ee6...15.exe

windows7-x64

5f29fd9ee6...15.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

5f29fd9ee6f0e3cfc7b58babf0603aec4b80ff798e51d5d18e5051bcf7aa1415
Size

201KB
Sample

221002-qm3qcsgfc6
MD5

6c5d915ca14706b2a638a74d00462cd0
SHA1

3f093a77ef7d7a063772615a099869350d97f962
SHA256

5f29fd9ee6f0e3cfc7b58babf0603aec4b80ff798e51d5d18e5051bcf7aa1415
SHA512

6fee73c749648764cfc1756d416a61bd887912b967fc0babeaa9f8aad832154a643a12640ce4af0d12251cc8d11c3cbe1e986d4968ec422d82d7463d9322182e
SSDEEP

6144:Cif8zIuCVYlxqfYTniz7KrHSF62oRludqw:B8zBQiqfYzg7KLq6KdL

Score

10^/10

evasion

Static task

static1

Behavioral task

behavioral1

Sample

5f29fd9ee6f0e3cfc7b58babf0603aec4b80ff798e51d5d18e5051bcf7aa1415.exe

Resource

win7-20220812-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

5f29fd9ee6f0e3cfc7b58babf0603aec4b80ff798e51d5d18e5051bcf7aa1415.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  5f29fd9ee6f0e3cfc7b58babf0603aec4b80ff798e51d5d18e5051bcf7aa1415
- Size
  
  201KB
- MD5
  
  6c5d915ca14706b2a638a74d00462cd0
- SHA1
  
  3f093a77ef7d7a063772615a099869350d97f962
- SHA256
  
  5f29fd9ee6f0e3cfc7b58babf0603aec4b80ff798e51d5d18e5051bcf7aa1415
- SHA512
  
  6fee73c749648764cfc1756d416a61bd887912b967fc0babeaa9f8aad832154a643a12640ce4af0d12251cc8d11c3cbe1e986d4968ec422d82d7463d9322182e
- SSDEEP
  
  6144:Cif8zIuCVYlxqfYTniz7KrHSF62oRludqw:B8zBQiqfYzg7KLq6KdL
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Modifies security service
  evasion
- Deletes itself
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
- Drops desktop.ini file(s)
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy