strela | 6b57197633273a41a53c14121504f89f1134bb1ca30166f4eefa3808bfbf75e2 | Triage

Submit
Reports

Overview

overview

Static

static

InstallWizard101.exe

windows7-x64

7

InstallWizard101.exe

windows10-2004-x64

7

Sharing

General

Target

InstallWizard101.exe
Size

26.0MB
Sample

240831-d23yfstdkq
MD5

2ec7ca56b024233004ef3f59f287a3cd
SHA1

629b419b966f043ebde271ad9ce9fd0a9ccc0cec
SHA256

6b57197633273a41a53c14121504f89f1134bb1ca30166f4eefa3808bfbf75e2
SHA512

c5a7e97a5e2c7537b6d55c1f1cf4f970986850562e727f73d34d7c25decda0689abda6ef5072a9ad0eb98b777bb844f8427a345fbd6df8811a71443cf85c40cc
SSDEEP

786432:GKRTcqIr+TUW48OpddotcwMA/gZpL2DAbyHo/Qq+c0j5m2WF7f:+qI6Tx6qtc

Score

10^/10

strela discovery upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

InstallWizard101.exe

Resource

win7-20240704-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

InstallWizard101.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

16 signatures

150 seconds

Malware Config

Targets

- Target
  
  InstallWizard101.exe
- Size
  
  26.0MB
- MD5
  
  2ec7ca56b024233004ef3f59f287a3cd
- SHA1
  
  629b419b966f043ebde271ad9ce9fd0a9ccc0cec
- SHA256
  
  6b57197633273a41a53c14121504f89f1134bb1ca30166f4eefa3808bfbf75e2
- SHA512
  
  c5a7e97a5e2c7537b6d55c1f1cf4f970986850562e727f73d34d7c25decda0689abda6ef5072a9ad0eb98b777bb844f8427a345fbd6df8811a71443cf85c40cc
- SSDEEP
  
  786432:GKRTcqIr+TUW48OpddotcwMA/gZpL2DAbyHo/Qq+c0j5m2WF7f:+qI6Tx6qtc
Score

7^/10

discovery upx
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy