e03902d1bccadae142b50eba146e33d7ac95cde290211b79e17d89dc6bf4769a | Triage

Submit
Reports

Overview

overview

8

Static

static

7

cafa076bca...dc.exe

windows7-x64

8

cafa076bca...dc.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

cafa076bcac62e33b9b2a42a24e7a4dc
Size

11KB
Sample

240315-kn3h4aec74
MD5

cafa076bcac62e33b9b2a42a24e7a4dc
SHA1

d35a1186d000eddff2dc82d3da897b4137ddceb3
SHA256

e03902d1bccadae142b50eba146e33d7ac95cde290211b79e17d89dc6bf4769a
SHA512

930a36ae2ec67881c8a0f27a98927621d59fb95f5742b413229bde944268e9c0eb7f212df165b290d1a01ebd1036cbe70888c789a51d4261e245835a710f053f
SSDEEP

192:kpCiAZ74IEcocRnjgoFtI60etitqtaV9aRz2sdSjqJQW:kphY0jcocRjjcqSYaV9+Hf

Score

8^/10

persistence upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

cafa076bcac62e33b9b2a42a24e7a4dc.exe

Resource

win7-20240221-en

persistence upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

cafa076bcac62e33b9b2a42a24e7a4dc.exe

Resource

win10v2004-20240226-en

persistence upx

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  cafa076bcac62e33b9b2a42a24e7a4dc
- Size
  
  11KB
- MD5
  
  cafa076bcac62e33b9b2a42a24e7a4dc
- SHA1
  
  d35a1186d000eddff2dc82d3da897b4137ddceb3
- SHA256
  
  e03902d1bccadae142b50eba146e33d7ac95cde290211b79e17d89dc6bf4769a
- SHA512
  
  930a36ae2ec67881c8a0f27a98927621d59fb95f5742b413229bde944268e9c0eb7f212df165b290d1a01ebd1036cbe70888c789a51d4261e245835a710f053f
- SSDEEP
  
  192:kpCiAZ74IEcocRnjgoFtI60etitqtaV9aRz2sdSjqJQW:kphY0jcocRjjcqSYaV9+Hf
Score

8^/10

persistence upx
- Modifies AppInit DLL entries
  persistence
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy