a20570dfb52228558e94ae83ee27fd3e50f5d09d0af49c597546ee8fffc3d161 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

cryptolaemus

windows10-2004-x64

7

cryptolaemus

windows11-21h2-x64

7

Sharing

General

Target

a20570dfb52228558e94ae83ee27fd3e50f5d09d0af49c597546ee8fffc3d161
Size

266KB
Sample

240522-1lvngaaa94
MD5

80d0565ede3a3caedee888dcb6b110c4
SHA1

4d111dcd9a9547dd93a7974e30eccf561aed808b
SHA256

a20570dfb52228558e94ae83ee27fd3e50f5d09d0af49c597546ee8fffc3d161
SHA512

e6b0fdfcf6c92c06f61bbef77ec16377eba72d30532f0b792758e3980c6046712dacbb4d259c058db2c789688b544cda2379cac883de56c71e4580e0329dedd9
SSDEEP

3072:CNXEGZJWhfNFC4S60+XoLczrVmXaqdOVBZrCQ8IVirmBtJjcWTw37H01ne4PK:wXzKdNY49u8rVsariGtJjcWYr01net

Score

7^/10

upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

a20570dfb52228558e94ae83ee27fd3e50f5d09d0af49c597546ee8fffc3d161.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

a20570dfb52228558e94ae83ee27fd3e50f5d09d0af49c597546ee8fffc3d161.exe

Resource

win11-20240419-en

windows11-21h2-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  a20570dfb52228558e94ae83ee27fd3e50f5d09d0af49c597546ee8fffc3d161
- Size
  
  266KB
- MD5
  
  80d0565ede3a3caedee888dcb6b110c4
- SHA1
  
  4d111dcd9a9547dd93a7974e30eccf561aed808b
- SHA256
  
  a20570dfb52228558e94ae83ee27fd3e50f5d09d0af49c597546ee8fffc3d161
- SHA512
  
  e6b0fdfcf6c92c06f61bbef77ec16377eba72d30532f0b792758e3980c6046712dacbb4d259c058db2c789688b544cda2379cac883de56c71e4580e0329dedd9
- SSDEEP
  
  3072:CNXEGZJWhfNFC4S60+XoLczrVmXaqdOVBZrCQ8IVirmBtJjcWTw37H01ne4PK:wXzKdNY49u8rVsariGtJjcWYr01net
Score

7^/10

upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy