d9b495db739415192ef959bace24554c287bc1249cb2e45e2d690da960e7422c | Triage

Submit
Reports

Overview

overview

7

Static

static

7

de203f055a...9f.exe

windows7-x64

7

de203f055a...9f.exe

windows10-2004-x64

7

Sharing

General

Target

de203f055a5b70687e119cac6a49129f
Size

3.2MB
Sample

231222-s5pbsschf7
MD5

de203f055a5b70687e119cac6a49129f
SHA1

5325f6aa0331ca8d9210a2078c2bdcebfc5c5c8b
SHA256

d9b495db739415192ef959bace24554c287bc1249cb2e45e2d690da960e7422c
SHA512

b4cc020b0af3ca759128a7cf547a1a6659bc4cda17660c25eafa4b4e4c7bce07deae15328311922400b1e882fe4dc4ee3ec572878abb8075269eaf24c1f62b54
SSDEEP

98304:+AA7cPi7w7cakc2G6pfFmcakcVM1uT64I0qKCYtUcakc2G6pfFmcakcO:+x7qdlAfcdlVM1um487mUdlAfcdlO

Score

7^/10

upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

de203f055a5b70687e119cac6a49129f.exe

Resource

win7-20231215-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

de203f055a5b70687e119cac6a49129f.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  de203f055a5b70687e119cac6a49129f
- Size
  
  3.2MB
- MD5
  
  de203f055a5b70687e119cac6a49129f
- SHA1
  
  5325f6aa0331ca8d9210a2078c2bdcebfc5c5c8b
- SHA256
  
  d9b495db739415192ef959bace24554c287bc1249cb2e45e2d690da960e7422c
- SHA512
  
  b4cc020b0af3ca759128a7cf547a1a6659bc4cda17660c25eafa4b4e4c7bce07deae15328311922400b1e882fe4dc4ee3ec572878abb8075269eaf24c1f62b54
- SSDEEP
  
  98304:+AA7cPi7w7cakc2G6pfFmcakcVM1uT64I0qKCYtUcakc2G6pfFmcakcO:+x7qdlAfcdlVM1um487mUdlAfcdlO
Score

7^/10

upx
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy