5778b10f5146f6c7278aa5b1a38a2888a6d9776d17f925f992c529b66757dfdb | Triage

Submit
Reports

Overview

overview

7

Static

static

3

76df08ddc0...72.exe

windows7-x64

7

76df08ddc0...72.exe

windows10-2004-x64

7

Sharing

General

Target

76df08ddc010cab98dc1b269df9ad872
Size

191KB
Sample

240126-kclq7shga8
MD5

76df08ddc010cab98dc1b269df9ad872
SHA1

bec5684f8bdf6e96b8615bf32172bb3ab6e1caeb
SHA256

5778b10f5146f6c7278aa5b1a38a2888a6d9776d17f925f992c529b66757dfdb
SHA512

b98b27d2263b8eafd7ddf14e2e606f69b9c86a42f0e6d3311c1608ef629978a07919e4dc86e1160437cc7e8c117ab90b0515a222fe7c0aeb98a3c3f1ee890aa3
SSDEEP

3072:ZkUWuhA8xT1O4+lxlY8yiWwirnY9b/0CPUlZwPJr1Pv1gDZWH9r7aP9govHvAc9:ZkMGV7IysoWuJpn4orSPn

Score

7^/10

persistence upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

76df08ddc010cab98dc1b269df9ad872.exe

Resource

win7-20231129-en

persistence upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

76df08ddc010cab98dc1b269df9ad872.exe

Resource

win10v2004-20231215-en

persistence upx

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  76df08ddc010cab98dc1b269df9ad872
- Size
  
  191KB
- MD5
  
  76df08ddc010cab98dc1b269df9ad872
- SHA1
  
  bec5684f8bdf6e96b8615bf32172bb3ab6e1caeb
- SHA256
  
  5778b10f5146f6c7278aa5b1a38a2888a6d9776d17f925f992c529b66757dfdb
- SHA512
  
  b98b27d2263b8eafd7ddf14e2e606f69b9c86a42f0e6d3311c1608ef629978a07919e4dc86e1160437cc7e8c117ab90b0515a222fe7c0aeb98a3c3f1ee890aa3
- SSDEEP
  
  3072:ZkUWuhA8xT1O4+lxlY8yiWwirnY9b/0CPUlZwPJr1Pv1gDZWH9r7aP9govHvAc9:ZkMGV7IysoWuJpn4orSPn
Score

7^/10

persistence upx
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy