6e05ac437fcd0c07e800166ccaae36acf13d0331824acf939498b27517357262 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

6e05ac437f...62.exe

windows7-x64

8

6e05ac437f...62.exe

windows10-2004-x64

7

Sharing

General

Target

6e05ac437fcd0c07e800166ccaae36acf13d0331824acf939498b27517357262
Size

243KB
Sample

240218-s2chtsbg2z
MD5

039d178a1189fa0e11c444d2ceb410ed
SHA1

0acb36294b8244c0263908127ba1ff5e6b61187c
SHA256

6e05ac437fcd0c07e800166ccaae36acf13d0331824acf939498b27517357262
SHA512

d6dcbf99ba0e2ae1d49f138fb37d1e3ef30cbbc6419396c9d3d1d7a5cf8a9fe28442a173b4bc4ae50ef7d2f7eb0b54dff795acfad25c4b539c1f24b4145b6691
SSDEEP

6144:1XYP/aK2h9H/B+3ChmBV+UdvrEFp7hKcSt+:1XYP/aK2vB+yYBjvrEH7pv

Score

8^/10

persistence upx

Static task

static1

Behavioral task

behavioral1

Sample

6e05ac437fcd0c07e800166ccaae36acf13d0331824acf939498b27517357262.exe

Resource

win7-20231215-en

persistence upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

6e05ac437fcd0c07e800166ccaae36acf13d0331824acf939498b27517357262.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  6e05ac437fcd0c07e800166ccaae36acf13d0331824acf939498b27517357262
- Size
  
  243KB
- MD5
  
  039d178a1189fa0e11c444d2ceb410ed
- SHA1
  
  0acb36294b8244c0263908127ba1ff5e6b61187c
- SHA256
  
  6e05ac437fcd0c07e800166ccaae36acf13d0331824acf939498b27517357262
- SHA512
  
  d6dcbf99ba0e2ae1d49f138fb37d1e3ef30cbbc6419396c9d3d1d7a5cf8a9fe28442a173b4bc4ae50ef7d2f7eb0b54dff795acfad25c4b539c1f24b4145b6691
- SSDEEP
  
  6144:1XYP/aK2h9H/B+3ChmBV+UdvrEFp7hKcSt+:1XYP/aK2vB+yYBjvrEH7pv
Score

8^/10

persistence upx
- Modifies AppInit DLL entries
  persistence
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy