9f99ed32b92b78bb7bbce05dd5b2193e6b0be41a2c3f1bc55d7e90f541fc9b2e | Triage

Submit
Reports

Overview

overview

8

Static

static

1

9f99ed32b9...2e.exe

windows7-x64

8

9f99ed32b9...2e.exe

windows10-2004-x64

8

Sharing

General

Target

9f99ed32b92b78bb7bbce05dd5b2193e6b0be41a2c3f1bc55d7e90f541fc9b2e
Size

3.3MB
Sample

230328-k7bjqaaa82
MD5

71fe07084ce0e70a080fceff3107fdba
SHA1

d1875192dcc26ad8e218760ba646759d23a8a75d
SHA256

9f99ed32b92b78bb7bbce05dd5b2193e6b0be41a2c3f1bc55d7e90f541fc9b2e
SHA512

42731aa9c5074e03245cf339a56271167c7aadce59b1d7563e2d9051f45ca911b09982532199da353e4224ec5359d721755bc939030de04a3b89cf3adf54a8c4
SSDEEP

98304:cjU1F2iMnPf7jmDFOONVtrgdp1e07NyW8/BkTzL:X1F2iMrjmDFOOBrgdp1e5De

Score

8^/10

upx

Static task

static1

Behavioral task

behavioral1

Sample

9f99ed32b92b78bb7bbce05dd5b2193e6b0be41a2c3f1bc55d7e90f541fc9b2e.exe

Resource

win7-20230220-en

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

9f99ed32b92b78bb7bbce05dd5b2193e6b0be41a2c3f1bc55d7e90f541fc9b2e.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  9f99ed32b92b78bb7bbce05dd5b2193e6b0be41a2c3f1bc55d7e90f541fc9b2e
- Size
  
  3.3MB
- MD5
  
  71fe07084ce0e70a080fceff3107fdba
- SHA1
  
  d1875192dcc26ad8e218760ba646759d23a8a75d
- SHA256
  
  9f99ed32b92b78bb7bbce05dd5b2193e6b0be41a2c3f1bc55d7e90f541fc9b2e
- SHA512
  
  42731aa9c5074e03245cf339a56271167c7aadce59b1d7563e2d9051f45ca911b09982532199da353e4224ec5359d721755bc939030de04a3b89cf3adf54a8c4
- SSDEEP
  
  98304:cjU1F2iMnPf7jmDFOONVtrgdp1e07NyW8/BkTzL:X1F2iMrjmDFOOBrgdp1e5De
Score

8^/10

upx
- Downloads MZ/PE file
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy