53b93aec7e8408f78c7fc58743700bb12365640720191e16a8649030ccab28e9 | Triage

Submit
Reports

Overview

overview

9

Static

static

1

53b93aec7e...e9.exe

windows7-x64

9

53b93aec7e...e9.exe

windows10-2004-x64

7

Sharing

General

Target

53b93aec7e8408f78c7fc58743700bb12365640720191e16a8649030ccab28e9
Size

186KB
Sample

221125-r4c2psed85
MD5

fdb19205de816d02bf1e06cf58369bea
SHA1

acd16539240441bff38e17a1977821242c2e6528
SHA256

53b93aec7e8408f78c7fc58743700bb12365640720191e16a8649030ccab28e9
SHA512

0eac175c6269240957d56e5b6196407a158e77eb0bb19250586c906938c3fcfef09a8d70c610def5f93aa67205443e018d5c3927093c5201eb076369cb358d32
SSDEEP

3072:FQIURTXJgOiBt0MYnlFpolsiQIzPRfiMXCcX9HpC0VH9z:FsmpB+fiVtfisNhppH9z

Score

9^/10

discovery persistence upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

53b93aec7e8408f78c7fc58743700bb12365640720191e16a8649030ccab28e9.exe

Resource

win7-20220812-en

windows7-x64

18 signatures

150 seconds

Behavioral task

behavioral2

Sample

53b93aec7e8408f78c7fc58743700bb12365640720191e16a8649030ccab28e9.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  53b93aec7e8408f78c7fc58743700bb12365640720191e16a8649030ccab28e9
- Size
  
  186KB
- MD5
  
  fdb19205de816d02bf1e06cf58369bea
- SHA1
  
  acd16539240441bff38e17a1977821242c2e6528
- SHA256
  
  53b93aec7e8408f78c7fc58743700bb12365640720191e16a8649030ccab28e9
- SHA512
  
  0eac175c6269240957d56e5b6196407a158e77eb0bb19250586c906938c3fcfef09a8d70c610def5f93aa67205443e018d5c3927093c5201eb076369cb358d32
- SSDEEP
  
  3072:FQIURTXJgOiBt0MYnlFpolsiQIzPRfiMXCcX9HpC0VH9z:FsmpB+fiVtfisNhppH9z
Score

9^/10

discovery upx persistence
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Downloads MZ/PE file
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Install Root Certificate

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy