6173a0d1685cfdd29a841c3efe0a5f2d4de8fd8f435bca1b496684e084ffe758 | Triage

Submit
Reports

Overview

overview

8

Static

static

6173a0d168...58.exe

windows7-x64

8

6173a0d168...58.exe

windows10-2004-x64

8

Sharing

General

Target

6173a0d1685cfdd29a841c3efe0a5f2d4de8fd8f435bca1b496684e084ffe758
Size

931KB
Sample

221125-psy4paca2x
MD5

9c173412b6c3a1302f114de1ce0eec38
SHA1

48f0567e28a3422c72afcde31ead8eaf84d11c3a
SHA256

6173a0d1685cfdd29a841c3efe0a5f2d4de8fd8f435bca1b496684e084ffe758
SHA512

879c9265c613c7a836997612e05d3ecfddf9716f5ab54c68fcfe16656342ecb5927002c361844f8bdcb3b4b862bb2ee0f560fa8b01e2a4619609a92dcfe73a25
SSDEEP

24576:C6IMwPvmB/wWq+5DUTt7FGSwmpu8nL6YK:C6j19rut7FoU56

Score

8^/10

upx

Static task

static1

Behavioral task

behavioral1

Sample

6173a0d1685cfdd29a841c3efe0a5f2d4de8fd8f435bca1b496684e084ffe758.exe

Resource

win7-20221111-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

6173a0d1685cfdd29a841c3efe0a5f2d4de8fd8f435bca1b496684e084ffe758.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  6173a0d1685cfdd29a841c3efe0a5f2d4de8fd8f435bca1b496684e084ffe758
- Size
  
  931KB
- MD5
  
  9c173412b6c3a1302f114de1ce0eec38
- SHA1
  
  48f0567e28a3422c72afcde31ead8eaf84d11c3a
- SHA256
  
  6173a0d1685cfdd29a841c3efe0a5f2d4de8fd8f435bca1b496684e084ffe758
- SHA512
  
  879c9265c613c7a836997612e05d3ecfddf9716f5ab54c68fcfe16656342ecb5927002c361844f8bdcb3b4b862bb2ee0f560fa8b01e2a4619609a92dcfe73a25
- SSDEEP
  
  24576:C6IMwPvmB/wWq+5DUTt7FGSwmpu8nL6YK:C6j19rut7FoU56
Score

8^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Peripheral Device Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy