0f65ed1e9418a4b8ef41dfeff19288e32be0caf8e05f103134a0b3bb51085699 | Triage

Submit
Reports

Overview

overview

7

Static

static

5

0f65ed1e94...9N.exe

windows7-x64

7

0f65ed1e94...9N.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

0f65ed1e9418a4b8ef41dfeff19288e32be0caf8e05f103134a0b3bb51085699N
Size

43KB
Sample

240929-nahtbavflf
MD5

ea2abf8db5b82312015273fa7972d850
SHA1

0d8a291ae1814a7726a615d2c726d234de56ff88
SHA256

0f65ed1e9418a4b8ef41dfeff19288e32be0caf8e05f103134a0b3bb51085699
SHA512

a776b2edf7aa4695d967dd67ce93138bdfc8d6c73fdd18ca115bb8db2f6c8484a0c1deca841db13c4bd37202c13e599c8588bd99ac66f64afee6b159e63d2212
SSDEEP

768:WNENa0Gz3p5lnbcuyD7U9Yg9fonCians3fNX08eGdr:Wms0qp5lnouy8uefonxgs3V0G

Score

7^/10

discovery upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

0f65ed1e9418a4b8ef41dfeff19288e32be0caf8e05f103134a0b3bb51085699N.exe

Resource

win7-20240903-en

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

0f65ed1e9418a4b8ef41dfeff19288e32be0caf8e05f103134a0b3bb51085699N.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

5 signatures

120 seconds

Malware Config

Targets

- Target
  
  0f65ed1e9418a4b8ef41dfeff19288e32be0caf8e05f103134a0b3bb51085699N
- Size
  
  43KB
- MD5
  
  ea2abf8db5b82312015273fa7972d850
- SHA1
  
  0d8a291ae1814a7726a615d2c726d234de56ff88
- SHA256
  
  0f65ed1e9418a4b8ef41dfeff19288e32be0caf8e05f103134a0b3bb51085699
- SHA512
  
  a776b2edf7aa4695d967dd67ce93138bdfc8d6c73fdd18ca115bb8db2f6c8484a0c1deca841db13c4bd37202c13e599c8588bd99ac66f64afee6b159e63d2212
- SSDEEP
  
  768:WNENa0Gz3p5lnbcuyD7U9Yg9fonCians3fNX08eGdr:Wms0qp5lnouy8uefonxgs3V0G
Score

7^/10

discovery upx
- Executes dropped EXE
- Loads dropped DLL
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy