a86874ea069ab1334b01752cd81d5aa5857c9397b0a321e033b7dc853aba262e | Triage

Submit
Reports

Overview

overview

7

Static

static

3

0fb5316f79...a4.exe

windows7-x64

7

0fb5316f79...a4.exe

windows10-2004-x64

3

Sharing

General

Target

0fb5316f798d549ff4d452f3ad0277a4
Size

386KB
Sample

231230-fv8w8seed4
MD5

0fb5316f798d549ff4d452f3ad0277a4
SHA1

0ec9704a39cda03d57718fbae1e3448835f25d56
SHA256

a86874ea069ab1334b01752cd81d5aa5857c9397b0a321e033b7dc853aba262e
SHA512

255d44a73c2f0d994e5b9c8b1e1b50b18369491e63d34db9a8fc68623237f2cd295eb78e89b56df043568a6f9ef2653fe68da95b6201a83628121c4070c5daee
SSDEEP

6144:cCHD2hB0WCqB7l+04YmQ71poL5Cgg2GaSppsBUdZeppRSA6G7F3tNyu:LHyhW4BxXmQ71pkCg2aSoaISAxPL

Score

7^/10

persistence upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0fb5316f798d549ff4d452f3ad0277a4.exe

Resource

win7-20231215-en

persistence upx

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

0fb5316f798d549ff4d452f3ad0277a4.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

1 signatures

150 seconds

Malware Config

Targets

- Target
  
  0fb5316f798d549ff4d452f3ad0277a4
- Size
  
  386KB
- MD5
  
  0fb5316f798d549ff4d452f3ad0277a4
- SHA1
  
  0ec9704a39cda03d57718fbae1e3448835f25d56
- SHA256
  
  a86874ea069ab1334b01752cd81d5aa5857c9397b0a321e033b7dc853aba262e
- SHA512
  
  255d44a73c2f0d994e5b9c8b1e1b50b18369491e63d34db9a8fc68623237f2cd295eb78e89b56df043568a6f9ef2653fe68da95b6201a83628121c4070c5daee
- SSDEEP
  
  6144:cCHD2hB0WCqB7l+04YmQ71poL5Cgg2GaSppsBUdZeppRSA6G7F3tNyu:LHyhW4BxXmQ71pkCg2aSoaISAxPL
Score

7^/10

persistence upx
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy