c8e00acc72b2a90ff92d352f079054a808e3945bb30bdb19cd705f9d9137b944 | Triage

Submit
Reports

Overview

overview

Static

static

c8e00acc72...44.exe

windows7-x64

9

c8e00acc72...44.exe

windows10-2004-x64

9

Sharing

General

Target

c8e00acc72b2a90ff92d352f079054a808e3945bb30bdb19cd705f9d9137b944
Size

408KB
Sample

240524-dq42dabb2s
MD5

c975ca024a54499058fc730800d0a85f
SHA1

dc058c8ccbd2cd10aa116293a59ae228cc7fe185
SHA256

c8e00acc72b2a90ff92d352f079054a808e3945bb30bdb19cd705f9d9137b944
SHA512

03519b0ee94821053ef58d2d93789b875ef60109690a332162acc40294e88d13ab51097eb8bb125011339d0e116134750fe3b1ae19ef911de0bf335f340b5bb2
SSDEEP

6144:wlj7cMni+d4d7AUv/p6NAt/BIlYIxW3+WOMjvEV4Un:wlbi+dsAAh6NAt/BI/xWtjcVB

Score

10^/10

persistence

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

c8e00acc72b2a90ff92d352f079054a808e3945bb30bdb19cd705f9d9137b944.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

c8e00acc72b2a90ff92d352f079054a808e3945bb30bdb19cd705f9d9137b944.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  c8e00acc72b2a90ff92d352f079054a808e3945bb30bdb19cd705f9d9137b944
- Size
  
  408KB
- MD5
  
  c975ca024a54499058fc730800d0a85f
- SHA1
  
  dc058c8ccbd2cd10aa116293a59ae228cc7fe185
- SHA256
  
  c8e00acc72b2a90ff92d352f079054a808e3945bb30bdb19cd705f9d9137b944
- SHA512
  
  03519b0ee94821053ef58d2d93789b875ef60109690a332162acc40294e88d13ab51097eb8bb125011339d0e116134750fe3b1ae19ef911de0bf335f340b5bb2
- SSDEEP
  
  6144:wlj7cMni+d4d7AUv/p6NAt/BIlYIxW3+WOMjvEV4Un:wlbi+dsAAh6NAt/BI/xWtjcVB
Score

9^/10

persistence
- UPX dump on OEP (original entry point)
- Executes dropped EXE
- Adds Run key to start application
  persistence
- Checks for any installed AV software in registry
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Software Discovery

Security Software Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy