ef438dff9a56ae41ba4ec7b8d1df2a3108f29a04f7b249897d1798b00dc7ba59 | Triage

Submit
Reports

Overview

overview

8

Static

static

8

ef438dff9a...59.exe

windows7-x64

ef438dff9a...59.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

ef438dff9a56ae41ba4ec7b8d1df2a3108f29a04f7b249897d1798b00dc7ba59
Size

247KB
Sample

221203-xex88sae6t
MD5

86bdbb805eaa4745a9f60bf645b8bc7d
SHA1

56ccda63964dd196233d28a9a562479c7173cd5d
SHA256

ef438dff9a56ae41ba4ec7b8d1df2a3108f29a04f7b249897d1798b00dc7ba59
SHA512

e8bc72a681fb052b2a8b6a05fd8dbbce602039d7aeb9628c47af679735325cfd627b28e97a3f077fab1973dd372627c91457862301f8019eff896dc849e5559f
SSDEEP

6144:bxlZam+akqx6YQJXcNlEHUIQeE3mmKJZNw:Flf5j6zCNa0xeE3mBJZa

Score

8^/10

persistence upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

ef438dff9a56ae41ba4ec7b8d1df2a3108f29a04f7b249897d1798b00dc7ba59.exe

Resource

win7-20220812-en

persistence upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

ef438dff9a56ae41ba4ec7b8d1df2a3108f29a04f7b249897d1798b00dc7ba59.exe

Resource

win10v2004-20220812-en

persistence upx

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  ef438dff9a56ae41ba4ec7b8d1df2a3108f29a04f7b249897d1798b00dc7ba59
- Size
  
  247KB
- MD5
  
  86bdbb805eaa4745a9f60bf645b8bc7d
- SHA1
  
  56ccda63964dd196233d28a9a562479c7173cd5d
- SHA256
  
  ef438dff9a56ae41ba4ec7b8d1df2a3108f29a04f7b249897d1798b00dc7ba59
- SHA512
  
  e8bc72a681fb052b2a8b6a05fd8dbbce602039d7aeb9628c47af679735325cfd627b28e97a3f077fab1973dd372627c91457862301f8019eff896dc849e5559f
- SSDEEP
  
  6144:bxlZam+akqx6YQJXcNlEHUIQeE3mmKJZNw:Flf5j6zCNa0xeE3mBJZa
Score

8^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy