aa52994eee86952221ac4eb41ed6daf1a5212b5226ff52a974466051a9a1e4b1 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

aa52994eee...b1.exe

windows7-x64

8

aa52994eee...b1.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

aa52994eee86952221ac4eb41ed6daf1a5212b5226ff52a974466051a9a1e4b1
Size

229KB
Sample

240525-1jhk5abh64
MD5

0b98d435c14a55a8dcb49a9b3bbb55b6
SHA1

9e6d3d3bf8d3d3008ceb4bb9a5d685990e3e7496
SHA256

aa52994eee86952221ac4eb41ed6daf1a5212b5226ff52a974466051a9a1e4b1
SHA512

c12764c6579f382f4880f8a3f271cd874331de6f012ba006b323abd7a4b0937713fb109b0ca7b9fd3f617501810f6a59ea4233a0c26917c27b1c8c36c3991a86
SSDEEP

3072:UAt2SoMm5CzTOZQvfSERdX9Zk8AtB+flovvC/Y6V6z5jmVZklFYCFQCexxlG3/NQ:c7EzjRsB+Rc2BV+UdvrEFp7hKxvIQ

Score

8^/10

persistence upx

Static task

static1

Behavioral task

behavioral1

Sample

aa52994eee86952221ac4eb41ed6daf1a5212b5226ff52a974466051a9a1e4b1.exe

Resource

win7-20231129-en

persistence upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

aa52994eee86952221ac4eb41ed6daf1a5212b5226ff52a974466051a9a1e4b1.exe

Resource

win10v2004-20240226-en

persistence upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  aa52994eee86952221ac4eb41ed6daf1a5212b5226ff52a974466051a9a1e4b1
- Size
  
  229KB
- MD5
  
  0b98d435c14a55a8dcb49a9b3bbb55b6
- SHA1
  
  9e6d3d3bf8d3d3008ceb4bb9a5d685990e3e7496
- SHA256
  
  aa52994eee86952221ac4eb41ed6daf1a5212b5226ff52a974466051a9a1e4b1
- SHA512
  
  c12764c6579f382f4880f8a3f271cd874331de6f012ba006b323abd7a4b0937713fb109b0ca7b9fd3f617501810f6a59ea4233a0c26917c27b1c8c36c3991a86
- SSDEEP
  
  3072:UAt2SoMm5CzTOZQvfSERdX9Zk8AtB+flovvC/Y6V6z5jmVZklFYCFQCexxlG3/NQ:c7EzjRsB+Rc2BV+UdvrEFp7hKxvIQ
Score

8^/10

persistence upx
- Modifies AppInit DLL entries
  persistence
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy