3def2892211bc62ad4d1c268d2c76fa509d9cf85be2ea30342a6c9c2b288106f | Triage

Submit
Reports

Overview

overview

8

Static

static

5

3def289221...6f.exe

windows7-x64

8

3def289221...6f.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

3def2892211bc62ad4d1c268d2c76fa509d9cf85be2ea30342a6c9c2b288106f
Size

1.8MB
Sample

221019-rr8mvacbfl
MD5

82629e3fbcaec576d07f8ef9d1640064
SHA1

08a43edd3f8abd89931b955d4bb88a02eef525d7
SHA256

3def2892211bc62ad4d1c268d2c76fa509d9cf85be2ea30342a6c9c2b288106f
SHA512

3e96d49d364f520fa224341d1619092569d60341e1d3d3753766c0a3b121588fe665f5f242cec8f63273c88d661fdce55772f51a1635f4a2222b1e2304a23c2b
SSDEEP

49152:LJZoQrbTFZY1iayaESazeshkBhKrLjXnQMk:LtrbTA1maRazDhDrXnQZ

Score

8^/10

upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

3def2892211bc62ad4d1c268d2c76fa509d9cf85be2ea30342a6c9c2b288106f.exe

Resource

win7-20220812-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

3def2892211bc62ad4d1c268d2c76fa509d9cf85be2ea30342a6c9c2b288106f.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  3def2892211bc62ad4d1c268d2c76fa509d9cf85be2ea30342a6c9c2b288106f
- Size
  
  1.8MB
- MD5
  
  82629e3fbcaec576d07f8ef9d1640064
- SHA1
  
  08a43edd3f8abd89931b955d4bb88a02eef525d7
- SHA256
  
  3def2892211bc62ad4d1c268d2c76fa509d9cf85be2ea30342a6c9c2b288106f
- SHA512
  
  3e96d49d364f520fa224341d1619092569d60341e1d3d3753766c0a3b121588fe665f5f242cec8f63273c88d661fdce55772f51a1635f4a2222b1e2304a23c2b
- SSDEEP
  
  49152:LJZoQrbTFZY1iayaESazeshkBhKrLjXnQMk:LtrbTA1maRazDhDrXnQZ
Score

8^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops startup file
- Uses the VBS compiler for execution
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy