e34a89247899ce801401d7c779c6918fcd0fefdada0eb189c51a01ad9473736d | Triage

Submit
Reports

Overview

overview

Static

static

7

48624c931e...c6.exe

windows7-x64

48624c931e...c6.exe

windows10-2004-x64

Sharing

General

Target

48624c931e4aa4b939ca3ec08b8f4ec6
Size

162KB
Sample

240107-jcahhahhb3
MD5

48624c931e4aa4b939ca3ec08b8f4ec6
SHA1

a48ddc340d7961223d653dbb4c937624a23aa2a9
SHA256

e34a89247899ce801401d7c779c6918fcd0fefdada0eb189c51a01ad9473736d
SHA512

23716b32d3d3e7d732fa371c2ae2c960f006680d59740908f9e5ebbf802a0ffd80652264c370c3b96ee0c8d74f4fac8d068b3f192255c319122719c809265435
SSDEEP

3072:AGC4mTElLZ9Ig4T2E52U6OyMNPQTHgnW6A4SlU5Mkm/7p9rzk3qq3Ti:AWmIlLZOg4B52UNpPtnW5HzjkawTi

Score

10^/10

evasion persistence upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

48624c931e4aa4b939ca3ec08b8f4ec6.exe

Resource

win7-20231215-en

evasion persistence upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

48624c931e4aa4b939ca3ec08b8f4ec6.exe

Resource

win10v2004-20231215-en

evasion persistence upx

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  48624c931e4aa4b939ca3ec08b8f4ec6
- Size
  
  162KB
- MD5
  
  48624c931e4aa4b939ca3ec08b8f4ec6
- SHA1
  
  a48ddc340d7961223d653dbb4c937624a23aa2a9
- SHA256
  
  e34a89247899ce801401d7c779c6918fcd0fefdada0eb189c51a01ad9473736d
- SHA512
  
  23716b32d3d3e7d732fa371c2ae2c960f006680d59740908f9e5ebbf802a0ffd80652264c370c3b96ee0c8d74f4fac8d068b3f192255c319122719c809265435
- SSDEEP
  
  3072:AGC4mTElLZ9Ig4T2E52U6OyMNPQTHgnW6A4SlU5Mkm/7p9rzk3qq3Ti:AWmIlLZOg4B52UNpPtnW5HzjkawTi
Score

10^/10

evasion persistence upx
- Modifies firewall policy service
  evasion
- Adds policy Run key to start application
  persistence
- Modifies Installed Components in the registry
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Create or Modify System Process

Windows Service

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Create or Modify System Process

Windows Service

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistenceupx

behavioral2

evasionpersistenceupx

© 2018-2025

Terms | Privacy