d08758a52088b0af395a1cf9e23806919762cabb8efd05737b4e1bf474d18050 | Triage

Submit
Reports

Overview

overview

9

Static

static

3

d08758a520...50.exe

windows7-x64

9

d08758a520...50.exe

windows10-2004-x64

9

Sharing

General

Target

d08758a52088b0af395a1cf9e23806919762cabb8efd05737b4e1bf474d18050
Size

213KB
Sample

240420-dmbknaef99
MD5

350458b65e21e77b22ddbf297a3e9765
SHA1

95c3e9b4e11f224a46e41c7f5074c5e46612b237
SHA256

d08758a52088b0af395a1cf9e23806919762cabb8efd05737b4e1bf474d18050
SHA512

c91d41a7854085af8237e7dbe2fd4fcd041b4d0b50f89372bdab7869dd747766a0d319c5751954401d3c3a28537a9b5cf10fac8b4d576709338a55574d79da83
SSDEEP

6144:xgk74mCtnRPF9cCGr/uHkBV+UdvrEFp7hK0/:xgk7enRNh4uHkBjvrEH7j/

Score

9^/10

upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d08758a52088b0af395a1cf9e23806919762cabb8efd05737b4e1bf474d18050.exe

Resource

win7-20240221-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

d08758a52088b0af395a1cf9e23806919762cabb8efd05737b4e1bf474d18050.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  d08758a52088b0af395a1cf9e23806919762cabb8efd05737b4e1bf474d18050
- Size
  
  213KB
- MD5
  
  350458b65e21e77b22ddbf297a3e9765
- SHA1
  
  95c3e9b4e11f224a46e41c7f5074c5e46612b237
- SHA256
  
  d08758a52088b0af395a1cf9e23806919762cabb8efd05737b4e1bf474d18050
- SHA512
  
  c91d41a7854085af8237e7dbe2fd4fcd041b4d0b50f89372bdab7869dd747766a0d319c5751954401d3c3a28537a9b5cf10fac8b4d576709338a55574d79da83
- SSDEEP
  
  6144:xgk74mCtnRPF9cCGr/uHkBV+UdvrEFp7hK0/:xgk7enRNh4uHkBjvrEH7j/
Score

9^/10

upx
- UPX dump on OEP (original entry point)
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy