4b633f0ad75128d4704a03c74f7da62156d0ed236112132dcf76b9d17e4c635e | Triage

Submit
Reports

Overview

overview

Static

static

8

4b633f0ad7...5e.exe

windows7-x64

4b633f0ad7...5e.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

4b633f0ad75128d4704a03c74f7da62156d0ed236112132dcf76b9d17e4c635e
Size

255KB
Sample

221029-fngjeacae2
MD5

fa1c3f5777e4b17da86e45555555bd91
SHA1

d52fda3b221e4a3bf65a101fc9b8df955cc8e68a
SHA256

4b633f0ad75128d4704a03c74f7da62156d0ed236112132dcf76b9d17e4c635e
SHA512

ecc29da9e67eb1ae5b6b131497f5d85bf9e02faeb6a6c5666d18381225b3f80dc7c459b818bfa18ec98fac36e3007b39754eceb81afbb1854be6456b745562e5
SSDEEP

3072:MMDb50WrZa8jCgae5+VQkGdUQFDxePZ2SBaQJXkNRtXlNGKaUIQW/qlQBG3mmTJi:1xlZam+akqx6YQJXcNlEHUIQeE3mmBIB

Score

10^/10

evasion upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

4b633f0ad75128d4704a03c74f7da62156d0ed236112132dcf76b9d17e4c635e.exe

Resource

win7-20220812-en

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

4b633f0ad75128d4704a03c74f7da62156d0ed236112132dcf76b9d17e4c635e.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  4b633f0ad75128d4704a03c74f7da62156d0ed236112132dcf76b9d17e4c635e
- Size
  
  255KB
- MD5
  
  fa1c3f5777e4b17da86e45555555bd91
- SHA1
  
  d52fda3b221e4a3bf65a101fc9b8df955cc8e68a
- SHA256
  
  4b633f0ad75128d4704a03c74f7da62156d0ed236112132dcf76b9d17e4c635e
- SHA512
  
  ecc29da9e67eb1ae5b6b131497f5d85bf9e02faeb6a6c5666d18381225b3f80dc7c459b818bfa18ec98fac36e3007b39754eceb81afbb1854be6456b745562e5
- SSDEEP
  
  3072:MMDb50WrZa8jCgae5+VQkGdUQFDxePZ2SBaQJXkNRtXlNGKaUIQW/qlQBG3mmTJi:1xlZam+akqx6YQJXcNlEHUIQeE3mmBIB
Score

10^/10

evasion upx
- Modifies visibility of file extensions in Explorer
  evasion
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Disables RegEdit via registry modification
  evasion
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy