55db26f11d8a1b47e9eb4020c52dc802fe57e7880d8a2500ed043de9473531b3 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

h4x.exe

windows11-21h2-x64

7

Sharing

General

Target

h4x.exe
Size

10.6MB
Sample

240419-szl99afh87
MD5

702b870f94cd9df375cb10db53a9c85d
SHA1

85b09661ca2e86484e9e2d89c1e843e771e839a3
SHA256

55db26f11d8a1b47e9eb4020c52dc802fe57e7880d8a2500ed043de9473531b3
SHA512

ff12f65d038595bfc4f2b10e767383dc209e524d46fdc84f569b7dc3f29ff455a7b48e4fc70ac2d7f729fe9446fcd9a850df58e789a73952c20c5517f51398af
SSDEEP

196608:hs+gX1G8VeAjwqlA1HeT39Iigw8v+vvKub75bcjWgbw5/mgzfUcUTuukjrWl+Os:IG8VeUu1+TtIiFpvvB5IjWq6zhVfda

Score

7^/10

pyinstaller

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

h4x.exe

Resource

win11-20240412-en

windows11-21h2-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  h4x.exe
- Size
  
  10.6MB
- MD5
  
  702b870f94cd9df375cb10db53a9c85d
- SHA1
  
  85b09661ca2e86484e9e2d89c1e843e771e839a3
- SHA256
  
  55db26f11d8a1b47e9eb4020c52dc802fe57e7880d8a2500ed043de9473531b3
- SHA512
  
  ff12f65d038595bfc4f2b10e767383dc209e524d46fdc84f569b7dc3f29ff455a7b48e4fc70ac2d7f729fe9446fcd9a850df58e789a73952c20c5517f51398af
- SSDEEP
  
  196608:hs+gX1G8VeAjwqlA1HeT39Iigw8v+vvKub75bcjWgbw5/mgzfUcUTuukjrWl+Os:IG8VeUu1+TtIiFpvvB5IjWq6zhVfda
Score

7^/10
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy