632d5bf996656557130faf9fcb4ffed15a12104f9dd6eb71819fffc8616c1c51 | Triage

Submit
Reports

Overview

overview

8

Static

static

632d5bf996...51.exe

windows7-x64

8

632d5bf996...51.exe

windows10-2004-x64

8

Sharing

General

Target

632d5bf996656557130faf9fcb4ffed15a12104f9dd6eb71819fffc8616c1c51
Size

931KB
Sample

221125-pqqpjagf37
MD5

aef4af30520c4ba082939889dec87410
SHA1

fd147a620abf3f59798d327466e22e60312a11b8
SHA256

632d5bf996656557130faf9fcb4ffed15a12104f9dd6eb71819fffc8616c1c51
SHA512

62e8a23c7fd81e478969243395cd9935799a96f2bdf9994641d0176e97486f627fc66074bcacb31e1e5b3dae6845656318707b0768504c91d03a0e9fb1374491
SSDEEP

24576:C6IMwPvmB/wWq+5DUTt7FGSwmpu8nL6YKK:C6j19rut7FoU56w

Score

8^/10

upx

Static task

static1

Behavioral task

behavioral1

Sample

632d5bf996656557130faf9fcb4ffed15a12104f9dd6eb71819fffc8616c1c51.exe

Resource

win7-20221111-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

632d5bf996656557130faf9fcb4ffed15a12104f9dd6eb71819fffc8616c1c51.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  632d5bf996656557130faf9fcb4ffed15a12104f9dd6eb71819fffc8616c1c51
- Size
  
  931KB
- MD5
  
  aef4af30520c4ba082939889dec87410
- SHA1
  
  fd147a620abf3f59798d327466e22e60312a11b8
- SHA256
  
  632d5bf996656557130faf9fcb4ffed15a12104f9dd6eb71819fffc8616c1c51
- SHA512
  
  62e8a23c7fd81e478969243395cd9935799a96f2bdf9994641d0176e97486f627fc66074bcacb31e1e5b3dae6845656318707b0768504c91d03a0e9fb1374491
- SSDEEP
  
  24576:C6IMwPvmB/wWq+5DUTt7FGSwmpu8nL6YKK:C6j19rut7FoU56w
Score

8^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Peripheral Device Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy