186b4267f0dc7c08b9bd74ab6db343469be2287eaab7f04f3117868e06252a9d | Triage

Submit
Reports

Overview

overview

7

Static

static

7

b0fed858de...0N.exe

windows7-x64

7

b0fed858de...0N.exe

windows10-2004-x64

7

Sharing

General

Target

b0fed858de99d310f42e826063a8cbf0N.exe
Size

3.0MB
Sample

240905-pdy55s1emf
MD5

b0fed858de99d310f42e826063a8cbf0
SHA1

9a85ffa2eee2d5e967ad1a35062a60cccf0722de
SHA256

186b4267f0dc7c08b9bd74ab6db343469be2287eaab7f04f3117868e06252a9d
SHA512

fe9a970b4a43fbea7e9961af852e9cbb2e7fe10a724c6962fd9df17d5bfd678728d76b0254bdd4c350ab53bdda19e8cedf7b7ae9640e80eafcfb147c6e1f5a00
SSDEEP

49152:pJ0sYimcakLWqhC2TH5t8NlqMcakLSOXmqOgfBmlxqCicakLWqhC2TH5t8NlqMcl:pJ1YimcakKaC2TZt8NlPcakGB1gZkkCD

Score

7^/10

discovery upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

b0fed858de99d310f42e826063a8cbf0N.exe

Resource

win7-20240903-en

windows7-x64

10 signatures

120 seconds

Behavioral task

behavioral2

Sample

b0fed858de99d310f42e826063a8cbf0N.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

10 signatures

120 seconds

Malware Config

Targets

- Target
  
  b0fed858de99d310f42e826063a8cbf0N.exe
- Size
  
  3.0MB
- MD5
  
  b0fed858de99d310f42e826063a8cbf0
- SHA1
  
  9a85ffa2eee2d5e967ad1a35062a60cccf0722de
- SHA256
  
  186b4267f0dc7c08b9bd74ab6db343469be2287eaab7f04f3117868e06252a9d
- SHA512
  
  fe9a970b4a43fbea7e9961af852e9cbb2e7fe10a724c6962fd9df17d5bfd678728d76b0254bdd4c350ab53bdda19e8cedf7b7ae9640e80eafcfb147c6e1f5a00
- SSDEEP
  
  49152:pJ0sYimcakLWqhC2TH5t8NlqMcakLSOXmqOgfBmlxqCicakLWqhC2TH5t8NlqMcl:pJ1YimcakKaC2TZt8NlPcakGB1gZkkCD
Score

7^/10

discovery upx
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy