83a914751790176124b05c10d43b55cae99017908c23e5fcf5780905a86d19e6 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

yes1.png

windows11-21h2-x64

8

Resubmissions

29/08/2024, 00:12

240829-ahfr2awanr 9

29/08/2024, 00:09

240829-afnpvsvhnr 8

Sharing

Copy URL Twitter E-mail

General

Target

yes1.png
Size

2.1MB
Sample

240829-afnpvsvhnr
MD5

109d63b491c1077016609e173055f4bb
SHA1

f403be71ba64e3640063e3dd38fe96d649744729
SHA256

83a914751790176124b05c10d43b55cae99017908c23e5fcf5780905a86d19e6
SHA512

842426bb9cf31c4ccf0b33b8b9653beae042c7117fc8ab82da143caa2cfe6f8aec92b9c1b604ab1e99669beda99e53a03c98a8a5d0be61a0855c8a4e85696234
SSDEEP

49152:OPlskifJbuKrlSKSdN9ZU7QttToyGNuD6m:OPls/xbZrZq7ltbGNuDB

Score

8^/10

defense_evasion discovery

Static task

static1

Behavioral task

behavioral1

Sample

yes1.png

Resource

win11-20240802-en

defense_evasion discovery

windows11-21h2-x64

20 signatures

150 seconds

Malware Config

Targets

- Target
  
  yes1.png
- Size
  
  2.1MB
- MD5
  
  109d63b491c1077016609e173055f4bb
- SHA1
  
  f403be71ba64e3640063e3dd38fe96d649744729
- SHA256
  
  83a914751790176124b05c10d43b55cae99017908c23e5fcf5780905a86d19e6
- SHA512
  
  842426bb9cf31c4ccf0b33b8b9653beae042c7117fc8ab82da143caa2cfe6f8aec92b9c1b604ab1e99669beda99e53a03c98a8a5d0be61a0855c8a4e85696234
- SSDEEP
  
  49152:OPlskifJbuKrlSKSdN9ZU7QttToyGNuD6m:OPls/xbZrZq7ltbGNuDB
Score

8^/10

defense_evasion discovery
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

SIP and Trust Provider Hijacking

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

© 2018-2025

Terms | Privacy