94c0e89ccf4900c8e56e3a85b24bca5b6713e369ac0c1c1e2c82f9d93474dcc3 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

cryptolaemus

windows10-2004-x64

7

cryptolaemus

windows11-21h2-x64

7

Sharing

General

Target

94c0e89ccf4900c8e56e3a85b24bca5b6713e369ac0c1c1e2c82f9d93474dcc3
Size

266KB
Sample

240422-cwgbtsed76
MD5

4ae3aeadc12fb5e6f5f903f7b728eaef
SHA1

95c153066b671a0da6b3675fbdf692b3624f5564
SHA256

94c0e89ccf4900c8e56e3a85b24bca5b6713e369ac0c1c1e2c82f9d93474dcc3
SHA512

3bdda39751e7b4c854451ef050737bf20f6b78829760b465ae1adfd7d2435e4ce8ab84d90aee320fecf3804847cec64d658fd7bcddf7e31ff17758e5b13fbd8d
SSDEEP

3072:DNXEGZJWhfNFC4S60+XoLczrVmXI9ggTXnOBATu3rejB1MiqGwedkH01ne4PK:pXzKdNY49u8rVdzJCKvMiqGbg01net

Score

7^/10

upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

94c0e89ccf4900c8e56e3a85b24bca5b6713e369ac0c1c1e2c82f9d93474dcc3.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

94c0e89ccf4900c8e56e3a85b24bca5b6713e369ac0c1c1e2c82f9d93474dcc3.exe

Resource

win11-20240412-en

windows11-21h2-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  94c0e89ccf4900c8e56e3a85b24bca5b6713e369ac0c1c1e2c82f9d93474dcc3
- Size
  
  266KB
- MD5
  
  4ae3aeadc12fb5e6f5f903f7b728eaef
- SHA1
  
  95c153066b671a0da6b3675fbdf692b3624f5564
- SHA256
  
  94c0e89ccf4900c8e56e3a85b24bca5b6713e369ac0c1c1e2c82f9d93474dcc3
- SHA512
  
  3bdda39751e7b4c854451ef050737bf20f6b78829760b465ae1adfd7d2435e4ce8ab84d90aee320fecf3804847cec64d658fd7bcddf7e31ff17758e5b13fbd8d
- SSDEEP
  
  3072:DNXEGZJWhfNFC4S60+XoLczrVmXI9ggTXnOBATu3rejB1MiqGwedkH01ne4PK:pXzKdNY49u8rVdzJCKvMiqGbg01net
Score

7^/10

upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy