db71afc74e7b156796bfdf79ac0402be47cb873d0c86e34ee430f3e2a398ee17 | Triage

Submit
Reports

Overview

overview

9

Static

static

7

e6354ae0b5...d6.exe

windows7-x64

9

e6354ae0b5...d6.exe

windows10-2004-x64

1

Sharing

General

Target

e6354ae0b5be2a9c0d883d560e7756d6
Size

1.4MB
Sample

231228-sntj7acde5
MD5

e6354ae0b5be2a9c0d883d560e7756d6
SHA1

4aa226591a22c2991370663346205e0106ae19a9
SHA256

db71afc74e7b156796bfdf79ac0402be47cb873d0c86e34ee430f3e2a398ee17
SHA512

685e968eaa4af9e29469c9ece517d6be85b8f94372b7d98047564ad68b94b9cdf18f5d599ec338772afab1d24695c6630667f808a2c0b4937f8bf8b3acec4a5d
SSDEEP

24576:I6yJMY9UFoRDhkeYM1jJR97zUbia9JVe0hs5WfBiERJchVML1bT6Ef:nY9UORVOM1jJHzaiape0hsABFRJch6Lz

Score

9^/10

rezer0 upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

e6354ae0b5be2a9c0d883d560e7756d6.exe

Resource

win7-20231215-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

e6354ae0b5be2a9c0d883d560e7756d6.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  e6354ae0b5be2a9c0d883d560e7756d6
- Size
  
  1.4MB
- MD5
  
  e6354ae0b5be2a9c0d883d560e7756d6
- SHA1
  
  4aa226591a22c2991370663346205e0106ae19a9
- SHA256
  
  db71afc74e7b156796bfdf79ac0402be47cb873d0c86e34ee430f3e2a398ee17
- SHA512
  
  685e968eaa4af9e29469c9ece517d6be85b8f94372b7d98047564ad68b94b9cdf18f5d599ec338772afab1d24695c6630667f808a2c0b4937f8bf8b3acec4a5d
- SSDEEP
  
  24576:I6yJMY9UFoRDhkeYM1jJR97zUbia9JVe0hs5WfBiERJchVML1bT6Ef:nY9UORVOM1jJHzaiape0hsABFRJch6Lz
Score

9^/10

rezer0 upx
- ReZer0 packer
  Detects ReZer0, a packer with multiple versions used in various campaigns.
  rezer0
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Scripting

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Scripting

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy