68ea7711782bceb7a79e2c9e8f6245c7d9f9f997d3b8a7e16fc38b2c2c1f2043 | Triage

Submit
Reports

Overview

overview

Static

static

3

hiqa.exe

windows7-x64

hiqa.exe

windows10-1703-x64

hiqa.exe

windows10-2004-x64

7

hiqa.exe

windows11-21h2-x64

Resubmissions

11-12-2023 15:37

231211-s2e9qacbe4 7

10-12-2023 15:29

231210-sw5x7aged8 10

09-12-2023 15:39

231209-s3lswshbfl 10

08-12-2023 04:20

231208-ex7lhsha83 10

07-12-2023 15:32

231207-syzh7acg62 10

01-12-2023 15:49

231201-s9kt6sdb45 10

01-12-2023 04:15

231201-evbq3aeh46 10

26-11-2023 06:57

231126-hrbtfafc68 10

19-11-2023 02:41

231119-c6sgvage73 10

Sharing

General

Target

hiqa.exe
Size

14.3MB
Sample

231207-syzh7acg62
MD5

eafd16a8eb7e6489286d094d9a6edfcf
SHA1

860a03fd13ca678e498b63c81bf7ef4d7cf34fa5
SHA256

68ea7711782bceb7a79e2c9e8f6245c7d9f9f997d3b8a7e16fc38b2c2c1f2043
SHA512

361ec653a4ba18f006e73ef3438fedb56938bc43d01d2bd4bf6985d3317a0e16eb48a522e86027e4464660e54dd3333a24096d6f961004c4ea7e5978b8032ef1
SSDEEP

98304:gsGNJipGZNaQrpBKXSSDYAKvs9fqdrSrJLA60BPL8jCcY:/5pGuwKXSSovs9fqdrSrOpBP

Score

10^/10

evasion trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

hiqa.exe

Resource

win7-20231023-en

evasion trojan upx

windows7-x64

9 signatures

60 seconds

Behavioral task

behavioral2

Sample

hiqa.exe

Resource

win10-20231023-en

evasion trojan upx

windows10-1703-x64

12 signatures

60 seconds

Behavioral task

behavioral3

Sample

hiqa.exe

Resource

win10v2004-20231201-en

windows10-2004-x64

3 signatures

60 seconds

Behavioral task

behavioral4

Sample

hiqa.exe

Resource

win11-20231128-en

evasion trojan upx

windows11-21h2-x64

12 signatures

60 seconds

Malware Config

Targets

- Target
  
  hiqa.exe
- Size
  
  14.3MB
- MD5
  
  eafd16a8eb7e6489286d094d9a6edfcf
- SHA1
  
  860a03fd13ca678e498b63c81bf7ef4d7cf34fa5
- SHA256
  
  68ea7711782bceb7a79e2c9e8f6245c7d9f9f997d3b8a7e16fc38b2c2c1f2043
- SHA512
  
  361ec653a4ba18f006e73ef3438fedb56938bc43d01d2bd4bf6985d3317a0e16eb48a522e86027e4464660e54dd3333a24096d6f961004c4ea7e5978b8032ef1
- SSDEEP
  
  98304:gsGNJipGZNaQrpBKXSSDYAKvs9fqdrSrJLA60BPL8jCcY:/5pGuwKXSSovs9fqdrSrOpBP
Score

10^/10

evasion trojan upx
- UAC bypass
  evasion trojan
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2 behavioral3 behavioral4

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Abuse Elevation Control Mechanism

Bypass User Account Control

Defense Evasion

Abuse Elevation Control Mechanism

Bypass User Account Control

Impair Defenses

Disable or Modify Tools

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

evasiontrojanupx

behavioral2

evasiontrojanupx

behavioral3

behavioral4

evasiontrojanupx

© 2018-2024

Terms | Privacy