0fae9132cc06644454acd27497e0024e2d0791010a8825f7983ee9e80f224de4 | Triage

Submit
Reports

Overview

overview

8

Static

static

7

668f368790...0f.exe

windows7-x64

8

668f368790...0f.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

668f3687903216c2a12cc6fe4927730f
Size

12KB
Sample

240119-b2mv5addhl
MD5

668f3687903216c2a12cc6fe4927730f
SHA1

b2baf2c4ca58dd1252305a645ad18fa7f626b809
SHA256

0fae9132cc06644454acd27497e0024e2d0791010a8825f7983ee9e80f224de4
SHA512

5fb217fb09d6cd77ddc38eaf0c5a333588fd22d2e62aa9d9551e3ac2dcbc2125b3a02dd3c0480fcb72361df706d192d27dd047afb66e93362845da2cf071338e
SSDEEP

192:cF/gTB1qgt/LBsgMUZAhQF7ZK5VrsOXlZE/WtlyETeTBMnsgel/krcaLA7Dq8:cF/g3RhLZGAVK3rsOXD1lyDTBJgelELU

Score

8^/10

persistence upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

668f3687903216c2a12cc6fe4927730f.exe

Resource

win7-20231215-en

persistence upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

668f3687903216c2a12cc6fe4927730f.exe

Resource

win10v2004-20231215-en

persistence upx

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  668f3687903216c2a12cc6fe4927730f
- Size
  
  12KB
- MD5
  
  668f3687903216c2a12cc6fe4927730f
- SHA1
  
  b2baf2c4ca58dd1252305a645ad18fa7f626b809
- SHA256
  
  0fae9132cc06644454acd27497e0024e2d0791010a8825f7983ee9e80f224de4
- SHA512
  
  5fb217fb09d6cd77ddc38eaf0c5a333588fd22d2e62aa9d9551e3ac2dcbc2125b3a02dd3c0480fcb72361df706d192d27dd047afb66e93362845da2cf071338e
- SSDEEP
  
  192:cF/gTB1qgt/LBsgMUZAhQF7ZK5VrsOXlZE/WtlyETeTBMnsgel/krcaLA7Dq8:cF/g3RhLZGAVK3rsOXD1lyDTBJgelELU
Score

8^/10

persistence upx
- Modifies AppInit DLL entries
  persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy