deaeec186753c742bf42d9e20a98989385ca503f9d25dace8cc55093286c2129 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

cryptolaemus

windows10-2004-x64

7

cryptolaemus

windows11-21h2-x64

7

Sharing

General

Target

deaeec186753c742bf42d9e20a98989385ca503f9d25dace8cc55093286c2129
Size

266KB
Sample

240523-avwc9afa63
MD5

6461fcbd0953a56c2c9aa1a0435b1d95
SHA1

e9d09f2270f90bff8919506122db3d5847502484
SHA256

deaeec186753c742bf42d9e20a98989385ca503f9d25dace8cc55093286c2129
SHA512

5b64e1ba2e9922e8ef2e15d81ffe60fcacb1a4e5d545aaf8677a0fc7fdb7accf3678aaf2c72f398a0b44c115de542334a53f6b8792db1debb0c934f3757abeca
SSDEEP

6144:CXzKdNY49u8rVK7tfmUFkkQNltmkIe01net:Ra4Artft/YlXz01

Score

7^/10

upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

deaeec186753c742bf42d9e20a98989385ca503f9d25dace8cc55093286c2129.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

deaeec186753c742bf42d9e20a98989385ca503f9d25dace8cc55093286c2129.exe

Resource

win11-20240426-en

windows11-21h2-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  deaeec186753c742bf42d9e20a98989385ca503f9d25dace8cc55093286c2129
- Size
  
  266KB
- MD5
  
  6461fcbd0953a56c2c9aa1a0435b1d95
- SHA1
  
  e9d09f2270f90bff8919506122db3d5847502484
- SHA256
  
  deaeec186753c742bf42d9e20a98989385ca503f9d25dace8cc55093286c2129
- SHA512
  
  5b64e1ba2e9922e8ef2e15d81ffe60fcacb1a4e5d545aaf8677a0fc7fdb7accf3678aaf2c72f398a0b44c115de542334a53f6b8792db1debb0c934f3757abeca
- SSDEEP
  
  6144:CXzKdNY49u8rVK7tfmUFkkQNltmkIe01net:Ra4Artft/YlXz01
Score

7^/10

upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy