c5cf99fab5896f8f04257a76126ece1ef66c6faf632d2372644c429d933335c7 | Triage

Submit
Reports

Overview

overview

5

Static

static

3

onn.exe

windows7-x64

5

onn.exe

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

Target

onn.exe
Size

302.4MB
Sample

230525-ewfreaga48
MD5

de378b2b0cf9bd4b62423e7942b786e3
SHA1

daa1d13c24c2595e28f3f8f6d79719b03ed6cb8a
SHA256

c5cf99fab5896f8f04257a76126ece1ef66c6faf632d2372644c429d933335c7
SHA512

6ed4569b84f94504033346e59c9a4e588e442491bcf5feb1aa752a5741bac139f1bc7e68aa11158bc32b06000b1861cc6a02415ae37ff39888183ca789315a0d
SSDEEP

49152:KjfK3MZJNphl2gdE2s+TGuE68e0g9uDK1Bsk:mK3MBphs92s6GhA0GP7

Score

5^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

onn.exe

Resource

win7-20230220-en

windows7-x64

6 signatures

600 seconds

Behavioral task

behavioral2

Sample

onn.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

6 signatures

600 seconds

Malware Config

Targets

- Target
  
  onn.exe
- Size
  
  302.4MB
- MD5
  
  de378b2b0cf9bd4b62423e7942b786e3
- SHA1
  
  daa1d13c24c2595e28f3f8f6d79719b03ed6cb8a
- SHA256
  
  c5cf99fab5896f8f04257a76126ece1ef66c6faf632d2372644c429d933335c7
- SHA512
  
  6ed4569b84f94504033346e59c9a4e588e442491bcf5feb1aa752a5741bac139f1bc7e68aa11158bc32b06000b1861cc6a02415ae37ff39888183ca789315a0d
- SSDEEP
  
  49152:KjfK3MZJNphl2gdE2s+TGuE68e0g9uDK1Bsk:mK3MBphs92s6GhA0GP7
Score

5^/10
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy