fcf9bfdda1dcbab86432fcf357390d8ab5e1c9f1ea5f39baf72d3150cd7c9d92 | Triage

Submit
Reports

Overview

overview

8

Static

static

fcf9bfdda1...92.exe

windows7-x64

8

fcf9bfdda1...92.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

fcf9bfdda1dcbab86432fcf357390d8ab5e1c9f1ea5f39baf72d3150cd7c9d92
Size

986KB
Sample

221125-nxhf3ahf5v
MD5

f571f9ba675a979292735c5f3a1d4e09
SHA1

d60929a1a78d39a86ee379b318ff96c79a861800
SHA256

fcf9bfdda1dcbab86432fcf357390d8ab5e1c9f1ea5f39baf72d3150cd7c9d92
SHA512

4e0b1ef15743158ea8cd9d13c5011de748e1583c8f0b9a21bb17806e8567b1046c8f3c050de678ec255c2ce0560689da1a85a61dc79c3b465caaa029ba04123c
SSDEEP

24576:o5CvHHvH7MgHNCntKmrQTE2Wxn7rrAq4jungDygJOMWJO:pjqQmr97rwX0JO

Score

8^/10

discovery evasion

Static task

static1

Behavioral task

behavioral1

Sample

fcf9bfdda1dcbab86432fcf357390d8ab5e1c9f1ea5f39baf72d3150cd7c9d92.exe

Resource

win7-20220901-en

discovery evasion

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

fcf9bfdda1dcbab86432fcf357390d8ab5e1c9f1ea5f39baf72d3150cd7c9d92.exe

Resource

win10v2004-20220901-en

discovery evasion

windows10-2004-x64

15 signatures

150 seconds

Malware Config

Targets

- Target
  
  fcf9bfdda1dcbab86432fcf357390d8ab5e1c9f1ea5f39baf72d3150cd7c9d92
- Size
  
  986KB
- MD5
  
  f571f9ba675a979292735c5f3a1d4e09
- SHA1
  
  d60929a1a78d39a86ee379b318ff96c79a861800
- SHA256
  
  fcf9bfdda1dcbab86432fcf357390d8ab5e1c9f1ea5f39baf72d3150cd7c9d92
- SHA512
  
  4e0b1ef15743158ea8cd9d13c5011de748e1583c8f0b9a21bb17806e8567b1046c8f3c050de678ec255c2ce0560689da1a85a61dc79c3b465caaa029ba04123c
- SSDEEP
  
  24576:o5CvHHvH7MgHNCntKmrQTE2Wxn7rrAq4jungDygJOMWJO:pjqQmr97rwX0JO
Score

8^/10

discovery evasion
- Executes dropped EXE
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion

© 2018-2025

Terms | Privacy