277b2b42c21adf2927e9a42912e39f126cd36f0981fa9b79ff7d205020bff5fc | Triage

Submit
Reports

Overview

overview

8

Static

static

277b2b42c2...fc.exe

windows7-x64

8

277b2b42c2...fc.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

Target

277b2b42c21adf2927e9a42912e39f126cd36f0981fa9b79ff7d205020bff5fc
Size

208KB
Sample

221125-x9wnwsdd4t
MD5

a014074fe7a802a5ed06d131cd755e40
SHA1

3d2957b9dbb5d9850a038245aef57d9a4d5f6214
SHA256

277b2b42c21adf2927e9a42912e39f126cd36f0981fa9b79ff7d205020bff5fc
SHA512

247dd43273ca7155093dcc791eb82ddbea31afe353956d6d39d80fa8a59db9f828658410492a68f8a5c755a85f6d3c5f58dbfdd843ab472456b973fbb3c23499
SSDEEP

1536:Vfuxw10lxJM5y8w5OZRVmgyDl+cWaxJcveQZNTRSb3EBAR1AlQPsxjheYhpXN5yh:f0OtF2Qo7VsJgisxlYegEX0ZZbW

Score

8^/10

persistence upx

Static task

static1

Behavioral task

behavioral1

Sample

277b2b42c21adf2927e9a42912e39f126cd36f0981fa9b79ff7d205020bff5fc.exe

Resource

win7-20221111-en

persistence upx

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

277b2b42c21adf2927e9a42912e39f126cd36f0981fa9b79ff7d205020bff5fc.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  277b2b42c21adf2927e9a42912e39f126cd36f0981fa9b79ff7d205020bff5fc
- Size
  
  208KB
- MD5
  
  a014074fe7a802a5ed06d131cd755e40
- SHA1
  
  3d2957b9dbb5d9850a038245aef57d9a4d5f6214
- SHA256
  
  277b2b42c21adf2927e9a42912e39f126cd36f0981fa9b79ff7d205020bff5fc
- SHA512
  
  247dd43273ca7155093dcc791eb82ddbea31afe353956d6d39d80fa8a59db9f828658410492a68f8a5c755a85f6d3c5f58dbfdd843ab472456b973fbb3c23499
- SSDEEP
  
  1536:Vfuxw10lxJM5y8w5OZRVmgyDl+cWaxJcveQZNTRSb3EBAR1AlQPsxjheYhpXN5yh:f0OtF2Qo7VsJgisxlYegEX0ZZbW
Score

8^/10

persistence upx
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy