e512b5e50d274d35aa3d5f01767db2e9aacea9890204f9a400938df71eaded7e | Triage

Submit
Reports

Overview

overview

9

Static

static

1

e512b5e50d...7e.dll

windows7-x64

9

e512b5e50d...7e.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

Target

e512b5e50d274d35aa3d5f01767db2e9aacea9890204f9a400938df71eaded7e
Size

150KB
Sample

240510-eqbkhaab2z
MD5

cf4e117dc2f726f1e4fe28c4eb7eeb31
SHA1

5f54f75c763a7aa7f9e98db14c71b0da5691b65d
SHA256

e512b5e50d274d35aa3d5f01767db2e9aacea9890204f9a400938df71eaded7e
SHA512

cf8dd919956c17b53dda6b5f97e7755f2f6631d45e7adf47559d58a79ce759cf0c906206fdc979914c2d1f9034a2bf0da4a77163cd68585118fbaa03b6940108
SSDEEP

3072:KHHZMRNjKySdLcOFVHZ5ecbCKnN22lQBV+UdE+rECWp7hKjQ7E6:TWrjFpecbC7BV+UdvrEFp7hKj6/

Score

9^/10

persistence upx

Static task

static1

Behavioral task

behavioral1

Sample

e512b5e50d274d35aa3d5f01767db2e9aacea9890204f9a400938df71eaded7e.dll

Resource

win7-20240215-en

persistence upx

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

e512b5e50d274d35aa3d5f01767db2e9aacea9890204f9a400938df71eaded7e.dll

Resource

win10v2004-20240508-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  e512b5e50d274d35aa3d5f01767db2e9aacea9890204f9a400938df71eaded7e
- Size
  
  150KB
- MD5
  
  cf4e117dc2f726f1e4fe28c4eb7eeb31
- SHA1
  
  5f54f75c763a7aa7f9e98db14c71b0da5691b65d
- SHA256
  
  e512b5e50d274d35aa3d5f01767db2e9aacea9890204f9a400938df71eaded7e
- SHA512
  
  cf8dd919956c17b53dda6b5f97e7755f2f6631d45e7adf47559d58a79ce759cf0c906206fdc979914c2d1f9034a2bf0da4a77163cd68585118fbaa03b6940108
- SSDEEP
  
  3072:KHHZMRNjKySdLcOFVHZ5ecbCKnN22lQBV+UdE+rECWp7hKjQ7E6:TWrjFpecbC7BV+UdvrEFp7hKj6/
Score

9^/10

persistence upx
- UPX dump on OEP (original entry point)
- Modifies AppInit DLL entries
  persistence
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy