fd79fdaecb456f14f9453bb21741206d4e7e99d873cafd60813562074aa53020 | Triage

Submit
Reports

Overview

overview

8

Static

static

8

fd79fdaecb...20.exe

windows7-x64

8

fd79fdaecb...20.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

fd79fdaecb456f14f9453bb21741206d4e7e99d873cafd60813562074aa53020
Size

311KB
Sample

221204-jtgm5sec2z
MD5

9b7c207da51af55f571a7015417c86c4
SHA1

1a71ab27ca9e0970fb3eee1ef692d834bd5e4b21
SHA256

fd79fdaecb456f14f9453bb21741206d4e7e99d873cafd60813562074aa53020
SHA512

15541df5ac8732274904c45551dd74e032cd6c635da3e253141ba226b4f9142e0e9d52a4d790d1933c7f32396a7320795792161cd6b6a1a21930fed26f83d42f
SSDEEP

6144:pQ+xeRKnTFPPhWgDuW58/zjUq95ZgpsbQcl5nSsmDU37orIK7:pLMRSPDDvAzjXgpGQcXiUiP

Score

8^/10

aspackv2 persistence upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

fd79fdaecb456f14f9453bb21741206d4e7e99d873cafd60813562074aa53020.exe

Resource

win7-20220812-en

persistence upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

fd79fdaecb456f14f9453bb21741206d4e7e99d873cafd60813562074aa53020.exe

Resource

win10v2004-20221111-en

persistence upx

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  fd79fdaecb456f14f9453bb21741206d4e7e99d873cafd60813562074aa53020
- Size
  
  311KB
- MD5
  
  9b7c207da51af55f571a7015417c86c4
- SHA1
  
  1a71ab27ca9e0970fb3eee1ef692d834bd5e4b21
- SHA256
  
  fd79fdaecb456f14f9453bb21741206d4e7e99d873cafd60813562074aa53020
- SHA512
  
  15541df5ac8732274904c45551dd74e032cd6c635da3e253141ba226b4f9142e0e9d52a4d790d1933c7f32396a7320795792161cd6b6a1a21930fed26f83d42f
- SSDEEP
  
  6144:pQ+xeRKnTFPPhWgDuW58/zjUq95ZgpsbQcl5nSsmDU37orIK7:pLMRSPDDvAzjXgpGQcXiUiP
Score

8^/10

persistence upx
- Modifies Installed Components in the registry
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy