e1782dac8a2ad603ced2ad07901420220ba76cf7378ded425792e84fb6c7bc4f | Triage

Submit
Reports

Overview

overview

8

Static

static

7

AAct_x64.exe

windows10-2004-x64

8

Sharing

General

Target

AAct_x64.exe
Size

1.5MB
Sample

240415-k8z9gaah74
MD5

de204efb5f4f9b88a4f95363b39ef27e
SHA1

a79e0a2122a12165b58d17e6344ebe446dba4da0
SHA256

e1782dac8a2ad603ced2ad07901420220ba76cf7378ded425792e84fb6c7bc4f
SHA512

1fef6a4908ecd278327b7aca2dcb9d17a1003f4d92a4a67c79b1ba15885e5280c8ece6745cee4f9c70b5ce28cc16912c80d5877b1c9bbdfbbbd091170edf37e2
SSDEEP

24576:SXlqTcefO1lU1tmDSvy+hhdZTWcn8ElBSOyNpM3LPueNy50fpzJVuSU/jcac0YMH:7T2cbvzhnkg/lBSOyc2cy50f1Au0YMAi

Score

8^/10

evasion persistence upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

AAct_x64.exe

Resource

win10v2004-20240412-en

evasion persistence upx

windows10-2004-x64

18 signatures

1800 seconds

Malware Config

Targets

- Target
  
  AAct_x64.exe
- Size
  
  1.5MB
- MD5
  
  de204efb5f4f9b88a4f95363b39ef27e
- SHA1
  
  a79e0a2122a12165b58d17e6344ebe446dba4da0
- SHA256
  
  e1782dac8a2ad603ced2ad07901420220ba76cf7378ded425792e84fb6c7bc4f
- SHA512
  
  1fef6a4908ecd278327b7aca2dcb9d17a1003f4d92a4a67c79b1ba15885e5280c8ece6745cee4f9c70b5ce28cc16912c80d5877b1c9bbdfbbbd091170edf37e2
- SSDEEP
  
  24576:SXlqTcefO1lU1tmDSvy+hhdZTWcn8ElBSOyNpM3LPueNy50fpzJVuSU/jcac0YMH:7T2cbvzhnkg/lBSOyc2cy50f1Au0YMAi
Score

8^/10

evasion persistence upx
- Modifies Windows Firewall
  evasion
- Sets file execution options in registry
  persistence
- Stops running service(s)
  evasion
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Create or Modify System Process

Windows Service

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

evasionpersistenceupx

© 2018-2025

Terms | Privacy