1f2b364731dfbf9ff447788ba42ac00a5cbb6459c750d07add97f683876779cb | Triage

Submit
Reports

Overview

overview

Static

static

3

Udbytninger.exe

windows7-x64

Udbytninger.exe

windows10-2004-x64

3

Analysis

max time kernel
155s
max time network
162s
platform
windows10-2004_x64
resource
win10v2004-20230221-en
resource tags

arch:x64arch:x86image:win10v2004-20230221-enlocale:en-usos:windows10-2004-x64system
submitted
18/05/2023, 14:13

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Udbytninger.exe

Resource

win7-20230220-en

guloader downloader

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

Udbytninger.exe

Resource

win10v2004-20230221-en

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

Udbytninger.exe
Size

663KB
MD5

5400880df8680f2c64d4fe3e0cd10559
SHA1

e98479e593f84afc8d672e0e0cb355e47b8a932b
SHA256

1f2b364731dfbf9ff447788ba42ac00a5cbb6459c750d07add97f683876779cb
SHA512

a4058e134ef9977812b0c9e024fa01026b51a0372133e0d17fa4f26786e354251dcfbd7da85af5a12246701a72860a06cb71a504950704af0d94a520fb4df81a
SSDEEP

12288:phrO+AxXs/+xaJqmuxzxz9OMkTEFSF6UWQE/onCO6p:ptxAxs/+8ImIx9O1TfWQE/n

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Processes

C:\Users\Admin\AppData\Local\Temp\Udbytninger.exe
"C:\Users\Admin\AppData\Local\Temp\Udbytninger.exe"
1⤵
PID:1840

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy