a34b6281db80f382418799a88a803a6b1746022d6ff14486ef31d787ce03a9a7 | Triage

Submit
Reports

Overview

overview

8

Static

static

8

a34b6281db...a7.exe

windows7-x64

8

a34b6281db...a7.exe

windows10-2004-x64

8

Sharing

General

Target

a34b6281db80f382418799a88a803a6b1746022d6ff14486ef31d787ce03a9a7
Size

5.3MB
Sample

221203-zvcctaab2x
MD5

f1a9cf2e051e8c15795f1af2a0d6e961
SHA1

8db6576c6d117bb654671207a90acd93d4295f0b
SHA256

a34b6281db80f382418799a88a803a6b1746022d6ff14486ef31d787ce03a9a7
SHA512

809f220e682d7f98e7a6767931dcb5ead4f2006a499ebe77e24d9d3e243d3eabcce8686ee8dc3b9f5bf269fcf694c5b92ebcbf8603e4c7203b9ee86e79cbb8b9
SSDEEP

24576:gDyTFtj3DyTFtjJDyTFtjpDyo1tjoDyo1tjWDyTFtj3DyTFtjJDyTFtjpDyo1tj6:Zt8tytNtWt/t8tytNtWtAt8tytNtWt

Score

8^/10

upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a34b6281db80f382418799a88a803a6b1746022d6ff14486ef31d787ce03a9a7.exe

Resource

win7-20221111-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

a34b6281db80f382418799a88a803a6b1746022d6ff14486ef31d787ce03a9a7.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  a34b6281db80f382418799a88a803a6b1746022d6ff14486ef31d787ce03a9a7
- Size
  
  5.3MB
- MD5
  
  f1a9cf2e051e8c15795f1af2a0d6e961
- SHA1
  
  8db6576c6d117bb654671207a90acd93d4295f0b
- SHA256
  
  a34b6281db80f382418799a88a803a6b1746022d6ff14486ef31d787ce03a9a7
- SHA512
  
  809f220e682d7f98e7a6767931dcb5ead4f2006a499ebe77e24d9d3e243d3eabcce8686ee8dc3b9f5bf269fcf694c5b92ebcbf8603e4c7203b9ee86e79cbb8b9
- SSDEEP
  
  24576:gDyTFtj3DyTFtjJDyTFtjpDyo1tjoDyo1tjWDyTFtj3DyTFtjJDyTFtjpDyo1tj6:Zt8tytNtWt/t8tytNtWtAt8tytNtWt
Score

8^/10

upx
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy