5e5c9d79d4e87176f0cfb6dca23faa19af14beaed5ec4fb455dfddb42e06f7ce | Triage

Submit
Reports

Overview

overview

8

Static

static

5e5c9d79d4...ce.exe

windows7-x64

8

5e5c9d79d4...ce.exe

windows10-2004-x64

8

Sharing

General

Target

5e5c9d79d4e87176f0cfb6dca23faa19af14beaed5ec4fb455dfddb42e06f7ce
Size

931KB
Sample

221125-px387shb46
MD5

9a73928c886136943bd8a7a267988a13
SHA1

0fdc886abab98b45f727ebdb1c2a1ed29a12d613
SHA256

5e5c9d79d4e87176f0cfb6dca23faa19af14beaed5ec4fb455dfddb42e06f7ce
SHA512

cfd8c898e48bea5cc8c80c962571feb1026b76fc970351e4a8da8a9d0d1f380053ca540b5940dc8c7f0d4655d7f66fe250e07ea4ba0501c294d931a3ab7faacf
SSDEEP

24576:i6IMwPvmB/wWq+5DUTt7FGSwmpu8nL6YK:i6j19rut7FoU56

Score

8^/10

upx

Static task

static1

Behavioral task

behavioral1

Sample

5e5c9d79d4e87176f0cfb6dca23faa19af14beaed5ec4fb455dfddb42e06f7ce.exe

Resource

win7-20221111-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

5e5c9d79d4e87176f0cfb6dca23faa19af14beaed5ec4fb455dfddb42e06f7ce.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  5e5c9d79d4e87176f0cfb6dca23faa19af14beaed5ec4fb455dfddb42e06f7ce
- Size
  
  931KB
- MD5
  
  9a73928c886136943bd8a7a267988a13
- SHA1
  
  0fdc886abab98b45f727ebdb1c2a1ed29a12d613
- SHA256
  
  5e5c9d79d4e87176f0cfb6dca23faa19af14beaed5ec4fb455dfddb42e06f7ce
- SHA512
  
  cfd8c898e48bea5cc8c80c962571feb1026b76fc970351e4a8da8a9d0d1f380053ca540b5940dc8c7f0d4655d7f66fe250e07ea4ba0501c294d931a3ab7faacf
- SSDEEP
  
  24576:i6IMwPvmB/wWq+5DUTt7FGSwmpu8nL6YK:i6j19rut7FoU56
Score

8^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy