968e48b21eb72bcb5f1f56f40bcbee1eb4b4eb17bdc05becd62ae1001e4cb50b | Triage

Submit
Reports

Overview

overview

8

Static

static

968e48b21e...0b.exe

windows7-x64

8

968e48b21e...0b.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

968e48b21eb72bcb5f1f56f40bcbee1eb4b4eb17bdc05becd62ae1001e4cb50b
Size

135KB
Sample

221205-n24j4agb54
MD5

ac5b9d7de5d3fd30ab551efe7560d223
SHA1

c2a5b2f096311e92f484611ae05a56700edaefd3
SHA256

968e48b21eb72bcb5f1f56f40bcbee1eb4b4eb17bdc05becd62ae1001e4cb50b
SHA512

50398438d88d8b45020d2c308e3b2513f9e04f6f7ce762abc5fa515cd4ae899f45816658347fa2751e01262cf016f28e0c681a520df9ef6c11899710a7d32a4d
SSDEEP

1536:mDsXc8JWqB7WOv1l61Skks5U2BsQiptMQlXitm05rX9NrCPcRLgAasP/5qSml3ix:7XKl/lKQipuQirXmEZgA+xlyTEWx

Score

8^/10

persistence upx

Static task

static1

Behavioral task

behavioral1

Sample

968e48b21eb72bcb5f1f56f40bcbee1eb4b4eb17bdc05becd62ae1001e4cb50b.exe

Resource

win7-20220812-en

persistence upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

968e48b21eb72bcb5f1f56f40bcbee1eb4b4eb17bdc05becd62ae1001e4cb50b.exe

Resource

win10v2004-20221111-en

persistence upx

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  968e48b21eb72bcb5f1f56f40bcbee1eb4b4eb17bdc05becd62ae1001e4cb50b
- Size
  
  135KB
- MD5
  
  ac5b9d7de5d3fd30ab551efe7560d223
- SHA1
  
  c2a5b2f096311e92f484611ae05a56700edaefd3
- SHA256
  
  968e48b21eb72bcb5f1f56f40bcbee1eb4b4eb17bdc05becd62ae1001e4cb50b
- SHA512
  
  50398438d88d8b45020d2c308e3b2513f9e04f6f7ce762abc5fa515cd4ae899f45816658347fa2751e01262cf016f28e0c681a520df9ef6c11899710a7d32a4d
- SSDEEP
  
  1536:mDsXc8JWqB7WOv1l61Skks5U2BsQiptMQlXitm05rX9NrCPcRLgAasP/5qSml3ix:7XKl/lKQipuQirXmEZgA+xlyTEWx
Score

8^/10

persistence upx
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy