empyrean | 392f7ddbc4337f33a6cf569caa65f0988f9eb8df5a64ea844b1933b4426780eb | Triage

Submit
Reports

Overview

overview

Static

static

main.exe

windows10-1703-x64

8

Sharing

General

Target

main.exe
Size

17.8MB
Sample

240823-237vssvanm
MD5

8c5cd1a9d4211864bd0c6b3fcc141913
SHA1

cd867fc14ae0aa10ead68dcad5a52281daea3626
SHA256

392f7ddbc4337f33a6cf569caa65f0988f9eb8df5a64ea844b1933b4426780eb
SHA512

88396003d72cbf66f6b452dac8098b87ba89578864ecf4884fce0eef9ffb0d5df0341ffc4e4c638226e2894dd108f4b551959cf6c6acc6386aea3d4e0d2671ee
SSDEEP

393216:GqPnLFXlreQ8DOETgsvfGfg/IuevEi6fKTn8q:rPLFXNeQhEowVDKJ

Score

10^/10

empyrean defense_evasion pyinstaller upx

Static task

static1

pyinstaller empyrean

4 signatures

Behavioral task

behavioral1

Sample

main.exe

Resource

win10-20240404-en

defense_evasion upx

windows10-1703-x64

17 signatures

150 seconds

Malware Config

Targets

- Target
  
  main.exe
- Size
  
  17.8MB
- MD5
  
  8c5cd1a9d4211864bd0c6b3fcc141913
- SHA1
  
  cd867fc14ae0aa10ead68dcad5a52281daea3626
- SHA256
  
  392f7ddbc4337f33a6cf569caa65f0988f9eb8df5a64ea844b1933b4426780eb
- SHA512
  
  88396003d72cbf66f6b452dac8098b87ba89578864ecf4884fce0eef9ffb0d5df0341ffc4e4c638226e2894dd108f4b551959cf6c6acc6386aea3d4e0d2671ee
- SSDEEP
  
  393216:GqPnLFXlreQ8DOETgsvfGfg/IuevEi6fKTn8q:rPLFXNeQhEowVDKJ
Score

8^/10

defense_evasion upx
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Legitimate hosting services abused for malware hosting/C2
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

SIP and Trust Provider Hijacking

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

pyinstallerempyrean

behavioral1

defense_evasionupx

© 2018-2025

Terms | Privacy