dad96eabbb6414b690b8c8e801cd3e8653cfc226868c3f1e3bbe9d211ddf1ede | Triage

Submit
Reports

Overview

overview

Static

static

8

dad96eabbb...de.exe

windows7-x64

dad96eabbb...de.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

dad96eabbb6414b690b8c8e801cd3e8653cfc226868c3f1e3bbe9d211ddf1ede
Size

298KB
Sample

221021-ea9scsaga2
MD5

44d28d242d803063195f05bfb5b49110
SHA1

b48838867b9e26124ef4866edb5d5eb5261cf700
SHA256

dad96eabbb6414b690b8c8e801cd3e8653cfc226868c3f1e3bbe9d211ddf1ede
SHA512

4ef8d76665d663df072e294efbc50ac2f35eaa72dc1599f5b036f8dc1d825d02c70d7c71d81df97e85bbe06e45da078e09bb8437c15f3bed334ef5a9601ae835
SSDEEP

6144:EuIlWqB+ihabs7Ch9KwyF5LeLodp2D1Mmakda0qLqIYC:v6Wq4aaE6KwyF5L0Y2D1PqL/

Score

10^/10

evasion upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

dad96eabbb6414b690b8c8e801cd3e8653cfc226868c3f1e3bbe9d211ddf1ede.exe

Resource

win7-20220812-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

dad96eabbb6414b690b8c8e801cd3e8653cfc226868c3f1e3bbe9d211ddf1ede.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  dad96eabbb6414b690b8c8e801cd3e8653cfc226868c3f1e3bbe9d211ddf1ede
- Size
  
  298KB
- MD5
  
  44d28d242d803063195f05bfb5b49110
- SHA1
  
  b48838867b9e26124ef4866edb5d5eb5261cf700
- SHA256
  
  dad96eabbb6414b690b8c8e801cd3e8653cfc226868c3f1e3bbe9d211ddf1ede
- SHA512
  
  4ef8d76665d663df072e294efbc50ac2f35eaa72dc1599f5b036f8dc1d825d02c70d7c71d81df97e85bbe06e45da078e09bb8437c15f3bed334ef5a9601ae835
- SSDEEP
  
  6144:EuIlWqB+ihabs7Ch9KwyF5LeLodp2D1Mmakda0qLqIYC:v6Wq4aaE6KwyF5L0Y2D1PqL/
Score

10^/10

evasion upx
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy