a3d4cb68fdcd2c49cf1aaf8e5a2676cb7c638a7dcf18aea780f388628de4fe78 | Triage

Submit
Reports

Overview

overview

7

Static

static

1

WindowFX-sd-setup.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

WindowFX-sd-setup.exe
Size

17.6MB
Sample

240526-s7v75abe8v
MD5

e6c902a46164bc164c1d004dcfdc3e5d
SHA1

447f29aa1c096f537c6916fb9123424dd2420300
SHA256

a3d4cb68fdcd2c49cf1aaf8e5a2676cb7c638a7dcf18aea780f388628de4fe78
SHA512

51b20f152de4fc08918f4d1e051e659f48dd906ab9b608b09db2d8c05c0728d1a8ba7b03026205a9ff0914bb803f4d581af6e2a6585c2b56479645a210d4a47b
SSDEEP

393216:LAP3vhWePx9QZkdB9WCmTno5T6tN6LqCluI6xBv8AGDJ3GCc232JLw:EP3pWdGfICmTndtKqw+98Dlc2mJLw

Score

7^/10

discovery upx

Static task

static1

Behavioral task

behavioral1

Sample

WindowFX-sd-setup.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

15 signatures

150 seconds

Malware Config

Targets

- Target
  
  WindowFX-sd-setup.exe
- Size
  
  17.6MB
- MD5
  
  e6c902a46164bc164c1d004dcfdc3e5d
- SHA1
  
  447f29aa1c096f537c6916fb9123424dd2420300
- SHA256
  
  a3d4cb68fdcd2c49cf1aaf8e5a2676cb7c638a7dcf18aea780f388628de4fe78
- SHA512
  
  51b20f152de4fc08918f4d1e051e659f48dd906ab9b608b09db2d8c05c0728d1a8ba7b03026205a9ff0914bb803f4d581af6e2a6585c2b56479645a210d4a47b
- SSDEEP
  
  393216:LAP3vhWePx9QZkdB9WCmTno5T6tN6LqCluI6xBv8AGDJ3GCc232JLw:EP3pWdGfICmTndtKqw+98Dlc2mJLw
Score

7^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy