61cf31134b0e44aeef33d82e2200472655656d295218c635b790f02de2683b4f | Triage

Submit
Reports

Overview

overview

8

Static

static

61cf31134b...4f.exe

windows7-x64

8

61cf31134b...4f.exe

windows10-2004-x64

8

Sharing

General

Target

61cf31134b0e44aeef33d82e2200472655656d295218c635b790f02de2683b4f
Size

931KB
Sample

221125-pskw3abh9s
MD5

879f40398162058a264f9ef39a036f9b
SHA1

1b44ba8c44f84a1c123679712232d758cab0d55f
SHA256

61cf31134b0e44aeef33d82e2200472655656d295218c635b790f02de2683b4f
SHA512

3df9073a6676d7013cf7dcf86fb2ef1bbd4274bb15b618de644e7f0f297583db88b2f506de84aab1cf4b904aa6c8864d60f87dad954827f27ca879473b86cfd3
SSDEEP

24576:i6IMwPvmB/wWq+5DUTt7FGSwmpu8nL6YKD:i6j19rut7FoU565

Score

8^/10

upx

Static task

static1

Behavioral task

behavioral1

Sample

61cf31134b0e44aeef33d82e2200472655656d295218c635b790f02de2683b4f.exe

Resource

win7-20220901-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

61cf31134b0e44aeef33d82e2200472655656d295218c635b790f02de2683b4f.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  61cf31134b0e44aeef33d82e2200472655656d295218c635b790f02de2683b4f
- Size
  
  931KB
- MD5
  
  879f40398162058a264f9ef39a036f9b
- SHA1
  
  1b44ba8c44f84a1c123679712232d758cab0d55f
- SHA256
  
  61cf31134b0e44aeef33d82e2200472655656d295218c635b790f02de2683b4f
- SHA512
  
  3df9073a6676d7013cf7dcf86fb2ef1bbd4274bb15b618de644e7f0f297583db88b2f506de84aab1cf4b904aa6c8864d60f87dad954827f27ca879473b86cfd3
- SSDEEP
  
  24576:i6IMwPvmB/wWq+5DUTt7FGSwmpu8nL6YKD:i6j19rut7FoU565
Score

8^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Peripheral Device Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy