e1c6c9cde48689a2658fb0551202ca5ebadca361588681841815507a34cfe1c9 | Triage

Submit
Reports

Overview

overview

8

Static

static

8

e1c6c9cde4...c9.exe

windows7-x64

8

e1c6c9cde4...c9.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

e1c6c9cde48689a2658fb0551202ca5ebadca361588681841815507a34cfe1c9
Size

654KB
Sample

221204-q2aywsdg33
MD5

dc6c75d0b7fccf901417f57c3c711f8b
SHA1

214f6a4e029a5bcc60735baa186e13ccd60f5975
SHA256

e1c6c9cde48689a2658fb0551202ca5ebadca361588681841815507a34cfe1c9
SHA512

0fff3bb777c28d6b21a3a0311437c26c44f028d49f0a5fd6780cedc6259c76d17adf7f259c298a40370c7b983ececd288239bb75bbfa969fc2e0516180e5e732
SSDEEP

12288:wrmZGB/ZxZ2jcrRKpzqQDaDQx76kvsz3J1R7JiYitaLoSy:wr3VZxZ2C8zqQ+QV6s6Z1N8V

Score

8^/10

upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e1c6c9cde48689a2658fb0551202ca5ebadca361588681841815507a34cfe1c9.exe

Resource

win7-20220901-en

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

e1c6c9cde48689a2658fb0551202ca5ebadca361588681841815507a34cfe1c9.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

15 signatures

150 seconds

Malware Config

Targets

- Target
  
  e1c6c9cde48689a2658fb0551202ca5ebadca361588681841815507a34cfe1c9
- Size
  
  654KB
- MD5
  
  dc6c75d0b7fccf901417f57c3c711f8b
- SHA1
  
  214f6a4e029a5bcc60735baa186e13ccd60f5975
- SHA256
  
  e1c6c9cde48689a2658fb0551202ca5ebadca361588681841815507a34cfe1c9
- SHA512
  
  0fff3bb777c28d6b21a3a0311437c26c44f028d49f0a5fd6780cedc6259c76d17adf7f259c298a40370c7b983ececd288239bb75bbfa969fc2e0516180e5e732
- SSDEEP
  
  12288:wrmZGB/ZxZ2jcrRKpzqQDaDQx76kvsz3J1R7JiYitaLoSy:wr3VZxZ2C8zqQ+QV6s6Z1N8V
Score

8^/10

upx
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy