39b2d96ef57afb709fee63a42e341da42c6d32ef130073fe84958f99ac8da8a3 | Triage

Submit
Reports

Overview

overview

8

Static

static

39b2d96ef5...a3.exe

windows7-x64

8

39b2d96ef5...a3.exe

windows10-2004-x64

3

Sharing

General

Target

39b2d96ef57afb709fee63a42e341da42c6d32ef130073fe84958f99ac8da8a3
Size

208KB
Sample

221125-x9r1psdd3w
MD5

aaad2098fbc5fba1a4c3a920836e9e60
SHA1

1b1c0d240493ee4ba7bff3a08df4eba6f58dd901
SHA256

39b2d96ef57afb709fee63a42e341da42c6d32ef130073fe84958f99ac8da8a3
SHA512

1427858c26ae009f735981027a2c68352e5749b2908752d3f4c352d60568079b119dbe2da04d6866647633ef09037230e1f6554fc45de5c98ce72998b04cb27f
SSDEEP

1536:Vfuxw10lxJM5y8w5OZRVmgyDl+cWaxJcveQZNTRSb3EBAR1AlQPsxjheYhpXN5yh:f0OtF2Qo7VsJgisxlYegEX0ZZbW

Score

8^/10

persistence upx

Static task

static1

Behavioral task

behavioral1

Sample

39b2d96ef57afb709fee63a42e341da42c6d32ef130073fe84958f99ac8da8a3.exe

Resource

win7-20221111-en

persistence upx

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

39b2d96ef57afb709fee63a42e341da42c6d32ef130073fe84958f99ac8da8a3.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  39b2d96ef57afb709fee63a42e341da42c6d32ef130073fe84958f99ac8da8a3
- Size
  
  208KB
- MD5
  
  aaad2098fbc5fba1a4c3a920836e9e60
- SHA1
  
  1b1c0d240493ee4ba7bff3a08df4eba6f58dd901
- SHA256
  
  39b2d96ef57afb709fee63a42e341da42c6d32ef130073fe84958f99ac8da8a3
- SHA512
  
  1427858c26ae009f735981027a2c68352e5749b2908752d3f4c352d60568079b119dbe2da04d6866647633ef09037230e1f6554fc45de5c98ce72998b04cb27f
- SSDEEP
  
  1536:Vfuxw10lxJM5y8w5OZRVmgyDl+cWaxJcveQZNTRSb3EBAR1AlQPsxjheYhpXN5yh:f0OtF2Qo7VsJgisxlYegEX0ZZbW
Score

8^/10

persistence upx
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy