2a3c5075363be6ad673b7c6daca4acfbf14c537e3951b784f8f24ebc39352cb0 | Triage

Submit
Reports

Overview

overview

8

Static

static

8

2a3c507536...b0.rar

windows7-x64

3

2a3c507536...b0.rar

windows10-2004-x64

3

faturanet.exe

windows7-x64

8

faturanet.exe

windows10-2004-x64

8

Sharing

General

Target

2a3c5075363be6ad673b7c6daca4acfbf14c537e3951b784f8f24ebc39352cb0
Size

207KB
Sample

221126-kdh2pshg5z
MD5

4a46e340e13d0cdb5a45a75a35845e34
SHA1

2eba7746c710ab298c4195c0e6985c0cf96c9113
SHA256

2a3c5075363be6ad673b7c6daca4acfbf14c537e3951b784f8f24ebc39352cb0
SHA512

0f4a40e21fdfa01dfeec9048885fe1a146e6c55ef404215f0d860511be13a4495e64ae3804346ab51a684db0f4ca569bcad1f3e0dcc6348e759d0ed594c6856f
SSDEEP

6144:YPEMEfg0R1lKQQxlf4JZr/FXhdPhm2GqNamJ7NfStV:PMeg4lPE4JlJhdpmYPJ7NfY

Score

8^/10

persistence upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2a3c5075363be6ad673b7c6daca4acfbf14c537e3951b784f8f24ebc39352cb0.rar

Resource

win7-20221111-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

2a3c5075363be6ad673b7c6daca4acfbf14c537e3951b784f8f24ebc39352cb0.rar

Resource

win10v2004-20220812-en

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral3

Sample

faturanet.exe

Resource

win7-20220901-en

persistence upx

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral4

Sample

faturanet.exe

Resource

win10v2004-20221111-en

persistence upx

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  2a3c5075363be6ad673b7c6daca4acfbf14c537e3951b784f8f24ebc39352cb0
- Size
  
  207KB
- MD5
  
  4a46e340e13d0cdb5a45a75a35845e34
- SHA1
  
  2eba7746c710ab298c4195c0e6985c0cf96c9113
- SHA256
  
  2a3c5075363be6ad673b7c6daca4acfbf14c537e3951b784f8f24ebc39352cb0
- SHA512
  
  0f4a40e21fdfa01dfeec9048885fe1a146e6c55ef404215f0d860511be13a4495e64ae3804346ab51a684db0f4ca569bcad1f3e0dcc6348e759d0ed594c6856f
- SSDEEP
  
  6144:YPEMEfg0R1lKQQxlf4JZr/FXhdPhm2GqNamJ7NfStV:PMeg4lPE4JlJhdpmYPJ7NfY
Score

3^/10
behavioral1 behavioral2
- Target
  
  faturanet.exe
- Size
  
  212KB
- MD5
  
  4f964a479250bc6307c448323eba3dda
- SHA1
  
  52c5950806b0e2126caec6c58aba7d7ec3e4ea4f
- SHA256
  
  f90a15ae0725ee8d3b2f1a6d840370ef0c7b463537688f02250c5a53dbcf4479
- SHA512
  
  13491dafe9e92dc0e60f39eaf23b020eb8f1c3aa7ac3450aafa07db2f50e89b74361e36b06a9335ee7502198233640d446251fc1a5c4bc5802f68739468bc0ac
- SSDEEP
  
  6144:2QBgEWmvH1nmXHJF3zB2ivUDec7BEOmZMi:EERvwZNZvCec7LuMi
Score

8^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral3 behavioral4

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

© 2018-2024

Terms | Privacy