b5f7341422a3ad0dbada918ea8af678bf68ad1fc99c0ba019e5c03ec6dbd761b | Triage

Submit
Reports

Overview

overview

8

Static

static

8

b5f7341422...1b.exe

windows7-x64

8

b5f7341422...1b.exe

windows10-2004-x64

8

Sharing

General

Target

b5f7341422a3ad0dbada918ea8af678bf68ad1fc99c0ba019e5c03ec6dbd761b
Size

48KB
Sample

221206-3qwgnshe8z
MD5

b9d92aec2b012db486266157cdb73c83
SHA1

aa7a3fae90ab8081db679900ec6e4424ff349bcf
SHA256

b5f7341422a3ad0dbada918ea8af678bf68ad1fc99c0ba019e5c03ec6dbd761b
SHA512

d928604852aa57cf9e4e992d4892c11dd2914cf5c64f1a5ffa7f4d944843d7c88c4ccd01c610aae057dc7518e044b4932488c35c69e6cc856460c849adc9262b
SSDEEP

768:CRGuY2P0Vo6r7SiAwyrMRjb4MWZOljSJZeflCX0QQyn9D8O/e++Yo5KpI52eszvk:kPcVo6r7S/rabY4OedCkQQREt+YoYS2q

Score

8^/10

evasion upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

b5f7341422a3ad0dbada918ea8af678bf68ad1fc99c0ba019e5c03ec6dbd761b.exe

Resource

win7-20220901-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

b5f7341422a3ad0dbada918ea8af678bf68ad1fc99c0ba019e5c03ec6dbd761b.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  b5f7341422a3ad0dbada918ea8af678bf68ad1fc99c0ba019e5c03ec6dbd761b
- Size
  
  48KB
- MD5
  
  b9d92aec2b012db486266157cdb73c83
- SHA1
  
  aa7a3fae90ab8081db679900ec6e4424ff349bcf
- SHA256
  
  b5f7341422a3ad0dbada918ea8af678bf68ad1fc99c0ba019e5c03ec6dbd761b
- SHA512
  
  d928604852aa57cf9e4e992d4892c11dd2914cf5c64f1a5ffa7f4d944843d7c88c4ccd01c610aae057dc7518e044b4932488c35c69e6cc856460c849adc9262b
- SSDEEP
  
  768:CRGuY2P0Vo6r7SiAwyrMRjb4MWZOljSJZeflCX0QQyn9D8O/e++Yo5KpI52eszvk:kPcVo6r7S/rabY4OedCkQQREt+YoYS2q
Score

8^/10

evasion upx
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy