f173308f4258d74e1bd682f365666d00145b6b7493f189a5dbcb1f5b8ce1e60f | Triage

Submit
Reports

Overview

overview

Static

static

f173308f42...0f.exe

windows7-x64

f173308f42...0f.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

f173308f4258d74e1bd682f365666d00145b6b7493f189a5dbcb1f5b8ce1e60f
Size

191KB
Sample

221020-dvyedscab6
MD5

44a491739f6038b4c9932f79d8818cbd
SHA1

03d0977f3ac8106f6ff081e27469e0aa9f6b6637
SHA256

f173308f4258d74e1bd682f365666d00145b6b7493f189a5dbcb1f5b8ce1e60f
SHA512

b5969cb99fb2668dcbc594f8d9e76df5d0ffa35156d578edb48f1869809ddf623e36451788536f83e0338ca047be02890ac2174789fd89870b7129ee94d35769
SSDEEP

3072:DHkmXKkEOLFBGrO/bqUVzacXai3GnZt9Ca7HvTDr:DHFXLCrO/brV7Ki2P9CarD

Score

10^/10

persistence upx

Static task

static1

Behavioral task

behavioral1

Sample

f173308f4258d74e1bd682f365666d00145b6b7493f189a5dbcb1f5b8ce1e60f.exe

Resource

win7-20220901-en

persistence upx

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

f173308f4258d74e1bd682f365666d00145b6b7493f189a5dbcb1f5b8ce1e60f.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  f173308f4258d74e1bd682f365666d00145b6b7493f189a5dbcb1f5b8ce1e60f
- Size
  
  191KB
- MD5
  
  44a491739f6038b4c9932f79d8818cbd
- SHA1
  
  03d0977f3ac8106f6ff081e27469e0aa9f6b6637
- SHA256
  
  f173308f4258d74e1bd682f365666d00145b6b7493f189a5dbcb1f5b8ce1e60f
- SHA512
  
  b5969cb99fb2668dcbc594f8d9e76df5d0ffa35156d578edb48f1869809ddf623e36451788536f83e0338ca047be02890ac2174789fd89870b7129ee94d35769
- SSDEEP
  
  3072:DHkmXKkEOLFBGrO/bqUVzacXai3GnZt9Ca7HvTDr:DHFXLCrO/brV7Ki2P9CarD
Score

10^/10

persistence upx
- Modifies WinLogon for persistence
  persistence
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy