b46a5be10ff73629ac8c808e78088e44076e3b895be038676ac041c74a8c09c8 | Triage

Submit
Reports

Overview

overview

Static

static

b46a5be10f...c8.dll

windows7-x64

9

b46a5be10f...c8.dll

windows10-2004-x64

9

Sharing

General

Target

b46a5be10ff73629ac8c808e78088e44076e3b895be038676ac041c74a8c09c8
Size

76KB
Sample

240415-cfhvqabf56
MD5

f41b2f783e206b04a7062cc7f2d088fe
SHA1

fa13904b7f5f874d1eb890a3e43901601228d409
SHA256

b46a5be10ff73629ac8c808e78088e44076e3b895be038676ac041c74a8c09c8
SHA512

14a6483703e1f7c2bfbfa62f4d375c01c87a3764046f2f1abf856eb04df0fe623420fcad395af2c568cb5d6a80247be599dc3e0cf38b8eca7e6a334c35ee35e7
SSDEEP

1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Zdt8Xigx3:c8y93KQjy7G55riF1cMo03/u3

Score

10^/10

persistence upx

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

b46a5be10ff73629ac8c808e78088e44076e3b895be038676ac041c74a8c09c8.dll

Resource

win7-20240221-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

b46a5be10ff73629ac8c808e78088e44076e3b895be038676ac041c74a8c09c8.dll

Resource

win10v2004-20240412-en

persistence upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  b46a5be10ff73629ac8c808e78088e44076e3b895be038676ac041c74a8c09c8
- Size
  
  76KB
- MD5
  
  f41b2f783e206b04a7062cc7f2d088fe
- SHA1
  
  fa13904b7f5f874d1eb890a3e43901601228d409
- SHA256
  
  b46a5be10ff73629ac8c808e78088e44076e3b895be038676ac041c74a8c09c8
- SHA512
  
  14a6483703e1f7c2bfbfa62f4d375c01c87a3764046f2f1abf856eb04df0fe623420fcad395af2c568cb5d6a80247be599dc3e0cf38b8eca7e6a334c35ee35e7
- SSDEEP
  
  1536:YjV8y93KQpFQmPLRk7G50zy/riF12jvRyo0hQk7Zdt8Xigx3:c8y93KQjy7G55riF1cMo03/u3
Score

9^/10

upx persistence
- UPX dump on OEP (original entry point)
- Modifies AppInit DLL entries
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy