b4293d66ae3d179e576a1fb3be11ac54137a3d3fd9a980dccda4eea5c748de72 | Triage

Submit
Reports

Overview

overview

8

Static

static

8

MSNPAS~1.exe

windows7-x64

1

MSNPAS~1.exe

windows10-2004-x64

1

clean.exe

windows7-x64

8

clean.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

b4293d66ae3d179e576a1fb3be11ac54137a3d3fd9a980dccda4eea5c748de72
Size

105KB
Sample

221202-2j18xaee7t
MD5

4837a3ae043e5f39076b9f6e9be1f15b
SHA1

cdb35db249274c9bea199810153f2c184eafc998
SHA256

b4293d66ae3d179e576a1fb3be11ac54137a3d3fd9a980dccda4eea5c748de72
SHA512

9005a0cd9edc8588b2880fb5205ed848e21a201eecd2593d7c58a1d9aaf82052a8af17c5ea39438c21a415f7d190c57ea2d51050fd2d0c5901dab00ed3223c73
SSDEEP

3072:jEhGVIRlqCUG8ucYvSJsj/Eg1BDTaBTFdU:MRvxa/gv/cTFi

Score

8^/10

upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

MSNPAS~1.exe

Resource

win7-20221111-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

MSNPAS~1.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

clean.exe

Resource

win7-20221111-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral4

Sample

clean.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  MSNPAS~1.EXE
- Size
  
  56KB
- MD5
  
  beabbdf66716e7ad6b562905d8434317
- SHA1
  
  28b768b48a9f8553fe81f3a90ef8dd03e11ed76f
- SHA256
  
  9d8063315d29d0279712506eca4ff7a9aead72fcb6c11c7477f8813ec2ea604f
- SHA512
  
  18acf666c12804ef42791594ee038814ba054cb4e422dd26327939cf907562f2a917a150656f5eabcd8767e2a4d386a40044cebdfe832bcf817af08757b5c363
- SSDEEP
  
  1536:rRgJ3m2wMZ2X7HvVXvy4gdW/AuBKhwDBqK4fACP:yJW24Bv9gdWIXhwDBX4fACP
Score

1^/10
behavioral1 behavioral2
- Target
  
  clean.exe
- Size
  
  73KB
- MD5
  
  8d6b587e70ae53e655bf66a6996485ce
- SHA1
  
  a69b7c6fd9c722123b21ff3efa52740eec928186
- SHA256
  
  dbb28147671284e82e9517f83c8f1170ef7a3edf923658645fbdb2ac67b99aa0
- SHA512
  
  54c1225a30c79c62f32c3315b16002b6686d8d05f5622692574ed4371326d1bfc0eec566c59ed048edb02abde48855535414800e4f9ef8b5212bba695098a85e
- SSDEEP
  
  1536:FwmkX5A3aj3mJqcLRE5wQ6cEiC7ipBvV3TlI0HoFruS:Fw5X5A3apcLRn52pSWotuS
Score

8^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Suspicious use of SetThreadContext
behavioral3 behavioral4

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

© 2018-2025

Terms | Privacy