ff89fc90fe7a92f6791576a7d23ee2f6565243e23c8c53337093ae7b1bf31158 | Triage

Submit
Reports

Overview

overview

Static

static

ff89fc90fe...58.exe

windows7-x64

9

ff89fc90fe...58.exe

windows10-2004-x64

8

Sharing

General

Target

ff89fc90fe7a92f6791576a7d23ee2f6565243e23c8c53337093ae7b1bf31158
Size

65KB
Sample

221124-bpzddscg7s
MD5

347c9b77db77aa036a9b59a2ecee9270
SHA1

37446fafa3be3716af70cf846322785f237cfa18
SHA256

ff89fc90fe7a92f6791576a7d23ee2f6565243e23c8c53337093ae7b1bf31158
SHA512

59388e08de520ad96cdfb8580620e1999b201c31f67e34a73ee1f6df3ae1f1dc0915338626b9d769d1854416cad0779ca75d3d48ad93ed636fa28aaec8423b5b
SSDEEP

1536:6kFq6YpQMRQi1C10l1bOLkNaAn/Bcteel:lt8QMRQKlOLpl

Score

10^/10

persistence upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

ff89fc90fe7a92f6791576a7d23ee2f6565243e23c8c53337093ae7b1bf31158.exe

Resource

win7-20221111-en

persistence upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

ff89fc90fe7a92f6791576a7d23ee2f6565243e23c8c53337093ae7b1bf31158.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  ff89fc90fe7a92f6791576a7d23ee2f6565243e23c8c53337093ae7b1bf31158
- Size
  
  65KB
- MD5
  
  347c9b77db77aa036a9b59a2ecee9270
- SHA1
  
  37446fafa3be3716af70cf846322785f237cfa18
- SHA256
  
  ff89fc90fe7a92f6791576a7d23ee2f6565243e23c8c53337093ae7b1bf31158
- SHA512
  
  59388e08de520ad96cdfb8580620e1999b201c31f67e34a73ee1f6df3ae1f1dc0915338626b9d769d1854416cad0779ca75d3d48ad93ed636fa28aaec8423b5b
- SSDEEP
  
  1536:6kFq6YpQMRQi1C10l1bOLkNaAn/Bcteel:lt8QMRQKlOLpl
Score

9^/10

persistence upx
- Nirsoft
- Drops file in Drivers directory
- Sets service image path in registry
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy