859a36f71f92e6da14ae9ec6ab168fd51c5068540d72eddea3a6b9d8f7403975 | Triage

Submit
Reports

Overview

overview

9

Static

static

9

859a36f71f...75.dll

windows7-x64

8

859a36f71f...75.dll

windows10-2004-x64

8

Sharing

General

Target

859a36f71f92e6da14ae9ec6ab168fd51c5068540d72eddea3a6b9d8f7403975
Size

334KB
Sample

221125-pr7z7sgg44
MD5

a78e93f6472193c3b927fd78bd0f4f26
SHA1

76b6aac81112e0065257bfc4fe5a7829fcd90050
SHA256

859a36f71f92e6da14ae9ec6ab168fd51c5068540d72eddea3a6b9d8f7403975
SHA512

f06ea923f2df18bc653ed43fc75313b1c7e6ff6e67d2d5b3f95a52434a89e75aeb8a648cb9fa4bb2c26d0218fecede0ac1a6691b4482adea22a7aff4af7163a5
SSDEEP

6144:LSgIadNoj7C79PiJRO5g4n0ubTXBVu0sHnq4/bBcH2YyQg0m:f327M9P2m0860sHq4jYDm

Score

9^/10

upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

859a36f71f92e6da14ae9ec6ab168fd51c5068540d72eddea3a6b9d8f7403975.dll

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

859a36f71f92e6da14ae9ec6ab168fd51c5068540d72eddea3a6b9d8f7403975.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  859a36f71f92e6da14ae9ec6ab168fd51c5068540d72eddea3a6b9d8f7403975
- Size
  
  334KB
- MD5
  
  a78e93f6472193c3b927fd78bd0f4f26
- SHA1
  
  76b6aac81112e0065257bfc4fe5a7829fcd90050
- SHA256
  
  859a36f71f92e6da14ae9ec6ab168fd51c5068540d72eddea3a6b9d8f7403975
- SHA512
  
  f06ea923f2df18bc653ed43fc75313b1c7e6ff6e67d2d5b3f95a52434a89e75aeb8a648cb9fa4bb2c26d0218fecede0ac1a6691b4482adea22a7aff4af7163a5
- SSDEEP
  
  6144:LSgIadNoj7C79PiJRO5g4n0ubTXBVu0sHnq4/bBcH2YyQg0m:f327M9P2m0860sHq4jYDm
Score

8^/10

upx
- Blocklisted process makes network request
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy