4f180bd723ee3e9c826f3567f6314ee6cf65d5c099845b0bbcdcafe766e867c2 | Triage

Submit
Reports

Overview

overview

8

Static

static

+++++·+-+...�n.exe

windows10-2004-x64

8

Sharing

General

Target

+++++·+-+-¦µ¦¦+¦¦n.exe
Size

37.5MB
Sample

221123-qwcwasfa37
MD5

b9a9d47f6d6373639ff084e527834472
SHA1

321797e1cd7d2541492cc1b06fa4a2807f941f14
SHA256

4f180bd723ee3e9c826f3567f6314ee6cf65d5c099845b0bbcdcafe766e867c2
SHA512

d3dd1f831db813a305b4eb213800f478d498351ec56de6a599ed1d48dcc09ffa84fa1852935dd8f1605b3b44af304284fdc3f369a10938bf756df590efd23f70
SSDEEP

786432:xFRE+DjNvrUoSusr8XcLbsb+LmcvVM0HTtjR6RFGoksLK75G6CkE+8rZAa:6+/trBje8XcWncvS0HhjRCXksLlx7+8X

Score

8^/10

upx

Static task

static1

Behavioral task

behavioral1

Sample

+++++·+-+-¦µ¦¦+¦¦n.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  +++++·+-+-¦µ¦¦+¦¦n.exe
- Size
  
  37.5MB
- MD5
  
  b9a9d47f6d6373639ff084e527834472
- SHA1
  
  321797e1cd7d2541492cc1b06fa4a2807f941f14
- SHA256
  
  4f180bd723ee3e9c826f3567f6314ee6cf65d5c099845b0bbcdcafe766e867c2
- SHA512
  
  d3dd1f831db813a305b4eb213800f478d498351ec56de6a599ed1d48dcc09ffa84fa1852935dd8f1605b3b44af304284fdc3f369a10938bf756df590efd23f70
- SSDEEP
  
  786432:xFRE+DjNvrUoSusr8XcLbsb+LmcvVM0HTtjR6RFGoksLK75G6CkE+8rZAa:6+/trBje8XcWncvS0HhjRCXksLlx7+8X
Score

8^/10

upx
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy