3392c5f9252ea3df4eb0d46ca6a6e047737b3a4afcea3ff6b9c43e106eebf373 | Triage

Submit
Reports

Overview

overview

Static

static

8

3392c5f925...73.exe

windows7-x64

3392c5f925...73.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

3392c5f9252ea3df4eb0d46ca6a6e047737b3a4afcea3ff6b9c43e106eebf373
Size

298KB
Sample

221020-s11h9sbedj
MD5

a0325ae20c96da844e0677b67d1d4f30
SHA1

aa16f223bb14e5cfc8d2f7ac04f18c1fa5cf405e
SHA256

3392c5f9252ea3df4eb0d46ca6a6e047737b3a4afcea3ff6b9c43e106eebf373
SHA512

b3375d32864c27f726a003466a1adb7b7fab4282509f0002173ac8e3c84e476b6fd1d4e5461588f84757a14ce4068b13ddd9aaa79f88cec45c9f09cfdda9444b
SSDEEP

6144:YuIlWqB+ihabs7Ch9KwyF5LeLodp2D1Mmakda0qLqIYw:D6Wq4aaE6KwyF5L0Y2D1PqLB

Score

10^/10

evasion upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

3392c5f9252ea3df4eb0d46ca6a6e047737b3a4afcea3ff6b9c43e106eebf373.exe

Resource

win7-20220812-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

3392c5f9252ea3df4eb0d46ca6a6e047737b3a4afcea3ff6b9c43e106eebf373.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  3392c5f9252ea3df4eb0d46ca6a6e047737b3a4afcea3ff6b9c43e106eebf373
- Size
  
  298KB
- MD5
  
  a0325ae20c96da844e0677b67d1d4f30
- SHA1
  
  aa16f223bb14e5cfc8d2f7ac04f18c1fa5cf405e
- SHA256
  
  3392c5f9252ea3df4eb0d46ca6a6e047737b3a4afcea3ff6b9c43e106eebf373
- SHA512
  
  b3375d32864c27f726a003466a1adb7b7fab4282509f0002173ac8e3c84e476b6fd1d4e5461588f84757a14ce4068b13ddd9aaa79f88cec45c9f09cfdda9444b
- SSDEEP
  
  6144:YuIlWqB+ihabs7Ch9KwyF5LeLodp2D1Mmakda0qLqIYw:D6Wq4aaE6KwyF5L0Y2D1PqLB
Score

10^/10

evasion upx
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy