cd593674e99b216838068aea9b7bc109e328c6bc6a5647ddadaabdbf0066a903 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

cd593674e9...03.exe

windows7-x64

7

cd593674e9...03.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

cd593674e99b216838068aea9b7bc109e328c6bc6a5647ddadaabdbf0066a903
Size

96KB
Sample

240913-cr2rzaydnk
MD5

6e9174ac7065f00de35c1f07d0cea821
SHA1

24ff36cb69effda10d6137db79428c7c87841e54
SHA256

cd593674e99b216838068aea9b7bc109e328c6bc6a5647ddadaabdbf0066a903
SHA512

d1fc49028ec62be866e6e015c3a813b777719da15cbf87f3f45aae1df354673f371b503c5b7baa910f8d11866f085500722043b6b857548efc2e6422f423d416
SSDEEP

3072:lbjgjXxdWBhMwRFy2Rk/kcIAebPph/ATvYKyUDI7Lur9:lfAXxd0qf2L/ATvryOI7a9

Score

7^/10

discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

cd593674e99b216838068aea9b7bc109e328c6bc6a5647ddadaabdbf0066a903.exe

Resource

win7-20240903-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

cd593674e99b216838068aea9b7bc109e328c6bc6a5647ddadaabdbf0066a903.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  cd593674e99b216838068aea9b7bc109e328c6bc6a5647ddadaabdbf0066a903
- Size
  
  96KB
- MD5
  
  6e9174ac7065f00de35c1f07d0cea821
- SHA1
  
  24ff36cb69effda10d6137db79428c7c87841e54
- SHA256
  
  cd593674e99b216838068aea9b7bc109e328c6bc6a5647ddadaabdbf0066a903
- SHA512
  
  d1fc49028ec62be866e6e015c3a813b777719da15cbf87f3f45aae1df354673f371b503c5b7baa910f8d11866f085500722043b6b857548efc2e6422f423d416
- SSDEEP
  
  3072:lbjgjXxdWBhMwRFy2Rk/kcIAebPph/ATvYKyUDI7Lur9:lfAXxd0qf2L/ATvryOI7a9
Score

7^/10

discovery upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy