d6125b421c88d3fb451b0cb33fdb4eca058283062853c90ba112a949cdaaa77c | Triage

Submit
Reports

Overview

overview

9

Static

static

1

d6125b421c...7c.exe

windows7-x64

9

d6125b421c...7c.exe

windows10-2004-x64

8

Sharing

General

Target

d6125b421c88d3fb451b0cb33fdb4eca058283062853c90ba112a949cdaaa77c
Size

9.2MB
Sample

221123-lk7t3sbf55
MD5

08308bd677933a47aa26ec8ecf946e08
SHA1

6b84c835d1bb8aacbe5cd4ad7339370e606e90ae
SHA256

d6125b421c88d3fb451b0cb33fdb4eca058283062853c90ba112a949cdaaa77c
SHA512

e7f887ccf007b627e0fbf4d10418b0d1bd628a94b5086b86272a16291a52452ede4571d6d275b13e7ab5fc8467a81981daacc215cc0fa66c47eb2b5acef0f4b0
SSDEEP

196608:9dfptKSonTim2epA8Frghl2xPGsrXlQybhzqbh8kxwyKcp5OiBSWXacxE:rTKSonOZeSugz2xBXlQycCkNKY5O6S/F

Score

9^/10

evasion upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d6125b421c88d3fb451b0cb33fdb4eca058283062853c90ba112a949cdaaa77c.exe

Resource

win7-20221111-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

d6125b421c88d3fb451b0cb33fdb4eca058283062853c90ba112a949cdaaa77c.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  d6125b421c88d3fb451b0cb33fdb4eca058283062853c90ba112a949cdaaa77c
- Size
  
  9.2MB
- MD5
  
  08308bd677933a47aa26ec8ecf946e08
- SHA1
  
  6b84c835d1bb8aacbe5cd4ad7339370e606e90ae
- SHA256
  
  d6125b421c88d3fb451b0cb33fdb4eca058283062853c90ba112a949cdaaa77c
- SHA512
  
  e7f887ccf007b627e0fbf4d10418b0d1bd628a94b5086b86272a16291a52452ede4571d6d275b13e7ab5fc8467a81981daacc215cc0fa66c47eb2b5acef0f4b0
- SSDEEP
  
  196608:9dfptKSonTim2epA8Frghl2xPGsrXlQybhzqbh8kxwyKcp5OiBSWXacxE:rTKSonOZeSugz2xBXlQycCkNKY5O6S/F
Score

9^/10

evasion upx
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Checks for common network interception software
  Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
  evasion
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy