03d95f70d85c6c9c4fe4f8da41345f10281338f012560004fea4fb0cf513dcc1 | Triage

Submit
Reports

Overview

overview

8

Static

static

8

03d95f70d8...c1.exe

windows7-x64

8

03d95f70d8...c1.exe

windows10-2004-x64

8

Sharing

General

Target

03d95f70d85c6c9c4fe4f8da41345f10281338f012560004fea4fb0cf513dcc1
Size

2.0MB
Sample

221125-psysxsca2w
MD5

b20230f2d8e138df24dd7528d52dff0c
SHA1

a908031c5da11963fc9fc2a1e0757e95c61e1b78
SHA256

03d95f70d85c6c9c4fe4f8da41345f10281338f012560004fea4fb0cf513dcc1
SHA512

8af430586219741c3e2102e41d1ba58c3b3d07b554f92441d1ab5c41f32a1042b1e74c311a01e64744d16ed518fc7e02b822850f33b6ac71c4e04727effc3561
SSDEEP

49152:Z0wLmxECalEPJ2vBetGv3GFHvV/7T86bJnS0k3:FwFlh2v3v30vZ86bJnS0k3

Score

8^/10

persistence upx vmprotect

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

03d95f70d85c6c9c4fe4f8da41345f10281338f012560004fea4fb0cf513dcc1.exe

Resource

win7-20220901-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

03d95f70d85c6c9c4fe4f8da41345f10281338f012560004fea4fb0cf513dcc1.exe

Resource

win10v2004-20220901-en

persistence upx vmprotect

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  03d95f70d85c6c9c4fe4f8da41345f10281338f012560004fea4fb0cf513dcc1
- Size
  
  2.0MB
- MD5
  
  b20230f2d8e138df24dd7528d52dff0c
- SHA1
  
  a908031c5da11963fc9fc2a1e0757e95c61e1b78
- SHA256
  
  03d95f70d85c6c9c4fe4f8da41345f10281338f012560004fea4fb0cf513dcc1
- SHA512
  
  8af430586219741c3e2102e41d1ba58c3b3d07b554f92441d1ab5c41f32a1042b1e74c311a01e64744d16ed518fc7e02b822850f33b6ac71c4e04727effc3561
- SSDEEP
  
  49152:Z0wLmxECalEPJ2vBetGv3GFHvV/7T86bJnS0k3:FwFlh2v3v30vZ86bJnS0k3
Score

8^/10

upx vmprotect persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

persistenceupxvmprotect

© 2018-2024

Terms | Privacy