3ea21abf5dd52c9eae0bdc48a66d85e5a110c689b30a2957b7af63389a1d8d64 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

ShowMyPC3510.exe

windows7-x64

8

ShowMyPC3510.exe

windows10-2004-x64

7

Sharing

General

Target

ShowMyPC3510.exe
Size

2.4MB
Sample

231115-p4mj2aah35
MD5

ca21dadf61d5c3fa84cfe8ea8c54510e
SHA1

2ffee2cd9bcffe3da0ce65b0c0d4adce912192a7
SHA256

3ea21abf5dd52c9eae0bdc48a66d85e5a110c689b30a2957b7af63389a1d8d64
SHA512

8365603868a49f052b81c8851d977f4b09e39967da9ddd67e3f5b826bea53e881fffd3114df57bec7017b97ad9ca59b7b2c1df47e859fc32faa52e1041180157
SSDEEP

49152:EVehYTRbpti4padlJmvJ8/0qj4j9ljoWORNCl6O1sB1kXVTJuSp9M:OeE7padc8Pj4gWORNClp1A1oVT1c

Score

8^/10

evasion upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ShowMyPC3510.exe

Resource

win7-20231025-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

ShowMyPC3510.exe

Resource

win10v2004-20231023-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  ShowMyPC3510.exe
- Size
  
  2.4MB
- MD5
  
  ca21dadf61d5c3fa84cfe8ea8c54510e
- SHA1
  
  2ffee2cd9bcffe3da0ce65b0c0d4adce912192a7
- SHA256
  
  3ea21abf5dd52c9eae0bdc48a66d85e5a110c689b30a2957b7af63389a1d8d64
- SHA512
  
  8365603868a49f052b81c8851d977f4b09e39967da9ddd67e3f5b826bea53e881fffd3114df57bec7017b97ad9ca59b7b2c1df47e859fc32faa52e1041180157
- SSDEEP
  
  49152:EVehYTRbpti4padlJmvJ8/0qj4j9ljoWORNCl6O1sB1kXVTJuSp9M:OeE7padc8Pj4gWORNClp1A1oVT1c
Score

8^/10

evasion upx
- Modifies Windows Firewall
  evasion
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy