c6747fb56ce9af854598a14f7529dceea1252e6f909ff71135cf0396baeb23ad | Triage

Submit
Reports

Overview

overview

Static

static

c6747fb56c...ad.exe

windows7-x64

c6747fb56c...ad.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

c6747fb56ce9af854598a14f7529dceea1252e6f909ff71135cf0396baeb23ad
Size

50KB
Sample

221207-d9w5waeg31
MD5

32d43f6f8b8d540feeb1c7378993589a
SHA1

4e2fb95e740bccac6b108c9c77cbd667783a1348
SHA256

c6747fb56ce9af854598a14f7529dceea1252e6f909ff71135cf0396baeb23ad
SHA512

dffb8406d2a906ad342fb5b2c4942e93d22b152e08a25821977cdabe425e3a0faa189e55f5a80353a614e7e57b203b9e512e39f007af2da58c38327d91ef286b
SSDEEP

768:kxEy2IKoci4IKEvqaPh7hZEyNcI38oF6BISJ+7OdVQ5tElxNOmzN9rva:3GKonKEiS7bEqb6KSJ+6T803OmzTa

Score

10^/10

persistence upx

Static task

static1

Behavioral task

behavioral1

Sample

c6747fb56ce9af854598a14f7529dceea1252e6f909ff71135cf0396baeb23ad.exe

Resource

win7-20220812-en

persistence upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

c6747fb56ce9af854598a14f7529dceea1252e6f909ff71135cf0396baeb23ad.exe

Resource

win10v2004-20220901-en

persistence upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  c6747fb56ce9af854598a14f7529dceea1252e6f909ff71135cf0396baeb23ad
- Size
  
  50KB
- MD5
  
  32d43f6f8b8d540feeb1c7378993589a
- SHA1
  
  4e2fb95e740bccac6b108c9c77cbd667783a1348
- SHA256
  
  c6747fb56ce9af854598a14f7529dceea1252e6f909ff71135cf0396baeb23ad
- SHA512
  
  dffb8406d2a906ad342fb5b2c4942e93d22b152e08a25821977cdabe425e3a0faa189e55f5a80353a614e7e57b203b9e512e39f007af2da58c38327d91ef286b
- SSDEEP
  
  768:kxEy2IKoci4IKEvqaPh7hZEyNcI38oF6BISJ+7OdVQ5tElxNOmzN9rva:3GKonKEiS7bEqb6KSJ+6T803OmzTa
Score

10^/10

persistence upx
- Modifies WinLogon for persistence
  persistence
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy