fa61f905efbe754cc3ca80590c426235e6a0f4f4c02369ed82021c70f9dcc877 | Triage

Submit
Reports

Overview

overview

8

Static

static

7

fa61f905ef...7N.exe

windows7-x64

8

fa61f905ef...7N.exe

windows10-2004-x64

8

Sharing

General

Target

fa61f905efbe754cc3ca80590c426235e6a0f4f4c02369ed82021c70f9dcc877N
Size

38KB
Sample

240919-fqwq4sseln
MD5

8ada2f4c4545d4d734e6a7b69a795f50
SHA1

0abcf93659b3c19c8bdbab3b80b4293715aa1990
SHA256

fa61f905efbe754cc3ca80590c426235e6a0f4f4c02369ed82021c70f9dcc877
SHA512

aa662ab2105a3bf064eae3f3659f30647064ee40736a8fc9dae63270041fd0be14c3add7d42d9a15d6471ed49b3b12731dcc5ce3c023db3435323e85de860635
SSDEEP

768:Nzj1JegVa3Gry+uELEmITCs/NUZ6nZdYbCLECkrQoP9fmF2f1cONb:NWQa2TLEmITcoQxfllfmS1cOl

Score

8^/10

discovery evasion execution upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

fa61f905efbe754cc3ca80590c426235e6a0f4f4c02369ed82021c70f9dcc877N.exe

Resource

win7-20240903-en

discovery evasion execution upx

windows7-x64

9 signatures

120 seconds

Behavioral task

behavioral2

Sample

fa61f905efbe754cc3ca80590c426235e6a0f4f4c02369ed82021c70f9dcc877N.exe

Resource

win10v2004-20240802-en

discovery evasion execution upx

windows10-2004-x64

8 signatures

120 seconds

Malware Config

Targets

- Target
  
  fa61f905efbe754cc3ca80590c426235e6a0f4f4c02369ed82021c70f9dcc877N
- Size
  
  38KB
- MD5
  
  8ada2f4c4545d4d734e6a7b69a795f50
- SHA1
  
  0abcf93659b3c19c8bdbab3b80b4293715aa1990
- SHA256
  
  fa61f905efbe754cc3ca80590c426235e6a0f4f4c02369ed82021c70f9dcc877
- SHA512
  
  aa662ab2105a3bf064eae3f3659f30647064ee40736a8fc9dae63270041fd0be14c3add7d42d9a15d6471ed49b3b12731dcc5ce3c023db3435323e85de860635
- SSDEEP
  
  768:Nzj1JegVa3Gry+uELEmITCs/NUZ6nZdYbCLECkrQoP9fmF2f1cONb:NWQa2TLEmITcoQxfllfmS1cOl
Score

8^/10

discovery evasion execution upx
- Stops running service(s)
  evasion execution
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

System Services

Service Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

discoveryevasionexecutionupx

behavioral2

discoveryevasionexecutionupx

© 2018-2025

Terms | Privacy