843661d700c0e43c57c40e3101f2bc262f97c399e70ee87353bea0690abffd49 | Triage

Submit
Reports

Overview

overview

Static

static

3

bluegriffo...64.exe

windows10-2004-x64

Resubmissions

26/05/2023, 22:27

230526-2c2wvshg9v 10

Sharing

Copy URL Twitter E-mail

General

Target

bluegriffon-3.1.win-x86_64.exe
Size

252.9MB
Sample

230526-2c2wvshg9v
MD5

3e0a96da7e6a610a9090bf4285cbc1c5
SHA1

e368177fca5b4a61b3b69c94bc700c59f9df45ff
SHA256

843661d700c0e43c57c40e3101f2bc262f97c399e70ee87353bea0690abffd49
SHA512

9854da9bc836ee441aa0099a3adf5a301b29ba4d02a63bb2408ad135947a3edd86a1513d969a16d62ce7cf9aa6b22ecffbe031b473b6a341344c1cac53232576
SSDEEP

6291456:F4SKnBAxnvZEFW8HCjqbz4JHlDzJfHB9XlN:F4S6BApBEFWcCjq/SJNfh9H

Score

10^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

bluegriffon-3.1.win-x86_64.exe

Resource

win10v2004-20230220-es

windows10-2004-x64

13 signatures

1800 seconds

Malware Config

Targets

- Target
  
  bluegriffon-3.1.win-x86_64.exe
- Size
  
  252.9MB
- MD5
  
  3e0a96da7e6a610a9090bf4285cbc1c5
- SHA1
  
  e368177fca5b4a61b3b69c94bc700c59f9df45ff
- SHA256
  
  843661d700c0e43c57c40e3101f2bc262f97c399e70ee87353bea0690abffd49
- SHA512
  
  9854da9bc836ee441aa0099a3adf5a301b29ba4d02a63bb2408ad135947a3edd86a1513d969a16d62ce7cf9aa6b22ecffbe031b473b6a341344c1cac53232576
- SSDEEP
  
  6291456:F4SKnBAxnvZEFW8HCjqbz4JHlDzJfHB9XlN:F4S6BApBEFWcCjq/SJNfh9H
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy