131608678a186506cb57a15536ff22e878abae5d99151c9c913db75718e16008 | Triage

Submit
Reports

Overview

overview

8

Static

static

7

3bc4cdda98...ed.exe

windows7-x64

8

3bc4cdda98...ed.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

3bc4cdda986f724929201f2068af1eed
Size

13KB
Sample

240101-d1cd4sagfk
MD5

3bc4cdda986f724929201f2068af1eed
SHA1

74c92b9c4101ad7933ad363b01925c49c90ccaed
SHA256

131608678a186506cb57a15536ff22e878abae5d99151c9c913db75718e16008
SHA512

a22d3f823840d58e35f911a4f7be5be827a0d544aab09b7aa3dc3de592a4b6d047e27e8979b0aeba4e50e71c7d888eb59200da7a26a8fc7a2f2c168723d31e6e
SSDEEP

384:IbyNzUmoRo0j0WyTr2Ao9WoPCemL15vi+2RZkmAdELDWeBtq1hkU:IONQN+a+92RZdAdExaA

Score

8^/10

persistence upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

3bc4cdda986f724929201f2068af1eed.exe

Resource

win7-20231215-en

persistence upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

3bc4cdda986f724929201f2068af1eed.exe

Resource

win10v2004-20231222-en

persistence upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  3bc4cdda986f724929201f2068af1eed
- Size
  
  13KB
- MD5
  
  3bc4cdda986f724929201f2068af1eed
- SHA1
  
  74c92b9c4101ad7933ad363b01925c49c90ccaed
- SHA256
  
  131608678a186506cb57a15536ff22e878abae5d99151c9c913db75718e16008
- SHA512
  
  a22d3f823840d58e35f911a4f7be5be827a0d544aab09b7aa3dc3de592a4b6d047e27e8979b0aeba4e50e71c7d888eb59200da7a26a8fc7a2f2c168723d31e6e
- SSDEEP
  
  384:IbyNzUmoRo0j0WyTr2Ao9WoPCemL15vi+2RZkmAdELDWeBtq1hkU:IONQN+a+92RZdAdExaA
Score

8^/10

persistence upx
- Modifies AppInit DLL entries
  persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy