a5b6a4a55d534213ae6daac0657b6455c95210de51c9a8d52d2567b78f4c5aae | Triage

Submit
Reports

Overview

overview

7

Static

static

7

a5b6a4a55d...ae.exe

windows7-x64

7

a5b6a4a55d...ae.exe

windows10-2004-x64

7

Sharing

General

Target

a5b6a4a55d534213ae6daac0657b6455c95210de51c9a8d52d2567b78f4c5aae
Size

1.3MB
Sample

240109-phex3aabgr
MD5

41206d46331e8b355d30110bee5f43d4
SHA1

b33bb0a1b3bda7e0264879a51f5c3f63fd0c76dd
SHA256

a5b6a4a55d534213ae6daac0657b6455c95210de51c9a8d52d2567b78f4c5aae
SHA512

1e885fa705e55a487b5c4f119c7f3d3571465ba8ffd9ae57f239596d9807ba069e29213f7804730f8a4f9f9555afbbff550e0d84cce498a467ed7703883f59b5
SSDEEP

24576:V1E77myYGYYl6gE+j8EKPkd1EbUXt7rrl3XVPkURVNhZ/frEH77q:A7rYol6LvXVbilpDVNhyq

Score

7^/10

upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a5b6a4a55d534213ae6daac0657b6455c95210de51c9a8d52d2567b78f4c5aae.exe

Resource

win7-20231215-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

a5b6a4a55d534213ae6daac0657b6455c95210de51c9a8d52d2567b78f4c5aae.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  a5b6a4a55d534213ae6daac0657b6455c95210de51c9a8d52d2567b78f4c5aae
- Size
  
  1.3MB
- MD5
  
  41206d46331e8b355d30110bee5f43d4
- SHA1
  
  b33bb0a1b3bda7e0264879a51f5c3f63fd0c76dd
- SHA256
  
  a5b6a4a55d534213ae6daac0657b6455c95210de51c9a8d52d2567b78f4c5aae
- SHA512
  
  1e885fa705e55a487b5c4f119c7f3d3571465ba8ffd9ae57f239596d9807ba069e29213f7804730f8a4f9f9555afbbff550e0d84cce498a467ed7703883f59b5
- SSDEEP
  
  24576:V1E77myYGYYl6gE+j8EKPkd1EbUXt7rrl3XVPkURVNhZ/frEH77q:A7rYol6LvXVbilpDVNhyq
Score

7^/10

upx
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy