f4541dc4634c0b71b1de8d19226ba8a4cbfc38b82fe8f3b54de4116b2ed3b4cc | Triage

Submit
Reports

Overview

overview

Static

static

8

f4541dc463...cc.exe

windows7-x64

f4541dc463...cc.exe

windows10-2004-x64

Sharing

General

Target

f4541dc4634c0b71b1de8d19226ba8a4cbfc38b82fe8f3b54de4116b2ed3b4cc
Size

228KB
Sample

221204-bnrxxsdg73
MD5

0b1a2ac19735b9e583ffffe90f17f100
SHA1

504277b928c97a633e7c22648e71da28014458cf
SHA256

f4541dc4634c0b71b1de8d19226ba8a4cbfc38b82fe8f3b54de4116b2ed3b4cc
SHA512

8fea62a01e05a2bd914786c551398bb38ef4c5d0aeb8bf5a3c038c2877a3a53a1af02e8a453691b54c9ebb30c4b6d0d9d2b383adf754395d228e33c357f740f9
SSDEEP

1536:RZx8gcK8ossZDulaPnPuhkvJJth5SLnouy8uQkgB54vm5sCREACyZExpi487PU2:RZx8gJscuAnU+JYoutueXl59vC+48bU

Score

10^/10

evasion trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f4541dc4634c0b71b1de8d19226ba8a4cbfc38b82fe8f3b54de4116b2ed3b4cc.exe

Resource

win7-20220812-en

evasion trojan upx

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

f4541dc4634c0b71b1de8d19226ba8a4cbfc38b82fe8f3b54de4116b2ed3b4cc.exe

Resource

win10v2004-20221111-en

evasion trojan upx

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  f4541dc4634c0b71b1de8d19226ba8a4cbfc38b82fe8f3b54de4116b2ed3b4cc
- Size
  
  228KB
- MD5
  
  0b1a2ac19735b9e583ffffe90f17f100
- SHA1
  
  504277b928c97a633e7c22648e71da28014458cf
- SHA256
  
  f4541dc4634c0b71b1de8d19226ba8a4cbfc38b82fe8f3b54de4116b2ed3b4cc
- SHA512
  
  8fea62a01e05a2bd914786c551398bb38ef4c5d0aeb8bf5a3c038c2877a3a53a1af02e8a453691b54c9ebb30c4b6d0d9d2b383adf754395d228e33c357f740f9
- SSDEEP
  
  1536:RZx8gcK8ossZDulaPnPuhkvJJth5SLnouy8uQkgB54vm5sCREACyZExpi487PU2:RZx8gJscuAnU+JYoutueXl59vC+48bU
Score

10^/10

evasion trojan upx
- Modifies firewall policy service
  evasion
- UAC bypass
  evasion trojan
- Windows security bypass
  evasion trojan
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Windows security modification
  evasion trojan
- Checks whether UAC is enabled
  evasion trojan
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Bypass User Account Control

Defense Evasion

Bypass User Account Control

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasiontrojanupx

behavioral2

evasiontrojanupx

© 2018-2025

Terms | Privacy