2e24e3a5e40a4e6a240bb1657cd98739e9ade442c7d72738c65a9b4a15437305 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

d9a2fbe4d1...0c.exe

windows7-x64

7

d9a2fbe4d1...0c.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

d9a2fbe4d14e8602000f224dcaa2f98d04b181f0c58072cc7f01e60cd6b62d0c
Size

2.7MB
Sample

231127-csyrpsdg52
MD5

8e5c16decb0f54054cf42bb61df7dc9c
SHA1

08026162b8ad9cfdcaa3a0bb6e0df4a67867ba2c
SHA256

2e24e3a5e40a4e6a240bb1657cd98739e9ade442c7d72738c65a9b4a15437305
SHA512

61df1fdb8131d521d5f9a25db9e15524155e268d2bc631794a7286fac3a33e960835736c87508324568df0c304744040959830fc92f266e0e676ce9f8ce95385
SSDEEP

49152:QgZJksvgvK12y6/HatyXtSEUtQo6Er+h93wuF7vHj/xk0j:vtiU6/5OQxEr+jNFrHj/Rj

Score

7^/10

discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d9a2fbe4d14e8602000f224dcaa2f98d04b181f0c58072cc7f01e60cd6b62d0c.exe

Resource

win7-20231020-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

d9a2fbe4d14e8602000f224dcaa2f98d04b181f0c58072cc7f01e60cd6b62d0c.exe

Resource

win10v2004-20231023-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  d9a2fbe4d14e8602000f224dcaa2f98d04b181f0c58072cc7f01e60cd6b62d0c
- Size
  
  2.7MB
- MD5
  
  4d323d176b372d48ce3d9cd8c9a50983
- SHA1
  
  4125bbdd3b811386f42fa4cc0268ed2aa496fb97
- SHA256
  
  d9a2fbe4d14e8602000f224dcaa2f98d04b181f0c58072cc7f01e60cd6b62d0c
- SHA512
  
  b077f3a5ae24a24dd697e8488d89c8f2a1a06e2c2c14e38807503a8f758606ea06c97a63ccdbe5c9634ea97afa34d1ea83f24f61a762f46136c21f2a90540aa2
- SSDEEP
  
  49152:w2lZdEspqVE1S0OdJoDYhxQmUJQusk745zZC6FzHDPfRY0E:9jV04OdjMQrk74jXFzDPflE
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy