68bfc82cf7cc58f72851fa02872e55d860ba867a6b57e66d1df56ded04bce1b7 | Triage

Submit
Reports

Overview

overview

8

Static

static

68bfc82cf7...b7.exe

windows7-x64

8

68bfc82cf7...b7.exe

windows10-2004-x64

8

Sharing

General

Target

68bfc82cf7cc58f72851fa02872e55d860ba867a6b57e66d1df56ded04bce1b7
Size

1.5MB
Sample

221127-tbmrjsde2t
MD5

706b469baa166256569c23e90bf65c5e
SHA1

d971fef90fe31ece0ac7458c6837013ba43601e6
SHA256

68bfc82cf7cc58f72851fa02872e55d860ba867a6b57e66d1df56ded04bce1b7
SHA512

06944ecccbf540113bc5ae7ad4e970e83c3d68392b06f21aadb79b2daa86d8958983866f62985aa1fe000d05b1dba7b722e4b5675fdbba01bf483e9700f97170
SSDEEP

24576:qHx7qhZjeDAIE61ag+uqGDkbfaUf3Sst3E+kf8FWmdcvPOCsknaEzVZxdw3Vx+49:qRg2h5vUXqst3E7POUaEzHE+nU

Score

8^/10

persistence upx

Static task

static1

Behavioral task

behavioral1

Sample

68bfc82cf7cc58f72851fa02872e55d860ba867a6b57e66d1df56ded04bce1b7.exe

Resource

win7-20221111-en

persistence upx

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

68bfc82cf7cc58f72851fa02872e55d860ba867a6b57e66d1df56ded04bce1b7.exe

Resource

win10v2004-20220901-en

persistence upx

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  68bfc82cf7cc58f72851fa02872e55d860ba867a6b57e66d1df56ded04bce1b7
- Size
  
  1.5MB
- MD5
  
  706b469baa166256569c23e90bf65c5e
- SHA1
  
  d971fef90fe31ece0ac7458c6837013ba43601e6
- SHA256
  
  68bfc82cf7cc58f72851fa02872e55d860ba867a6b57e66d1df56ded04bce1b7
- SHA512
  
  06944ecccbf540113bc5ae7ad4e970e83c3d68392b06f21aadb79b2daa86d8958983866f62985aa1fe000d05b1dba7b722e4b5675fdbba01bf483e9700f97170
- SSDEEP
  
  24576:qHx7qhZjeDAIE61ag+uqGDkbfaUf3Sst3E+kf8FWmdcvPOCsknaEzVZxdw3Vx+49:qRg2h5vUXqst3E7POUaEzHE+nU
Score

8^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy