14325c276cb490f18d1903178292a7f066e35f789f8f64119bb9b4d616f5f3ac | Triage

Submit
Reports

Overview

overview

Static

static

5

14325c276c...cN.exe

windows7-x64

14325c276c...cN.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

14325c276cb490f18d1903178292a7f066e35f789f8f64119bb9b4d616f5f3acN
Size

38KB
Sample

241005-f8h8qsyamj
MD5

5966843976360f1a005ac90e1ea83f00
SHA1

ef795baa0e393a309d93999bd10be52ba0f5d7ae
SHA256

14325c276cb490f18d1903178292a7f066e35f789f8f64119bb9b4d616f5f3ac
SHA512

922ff2ea99500d5a641f892042351b00e5f4414b818827c17cc22038fa324a25a5552b6ebe9d4f8d6146ed8fe98528432145ef0f789b13eaea94d5bcf29910ee
SSDEEP

768:g5BOFKksO1mE9B77777J77c77c77c718nhSobR6vMonug352Ud/vSAODxOamXhGO:g8Fs+DB77777J77c77c77c718h3bR6vN

Score

10^/10

discovery persistence upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

14325c276cb490f18d1903178292a7f066e35f789f8f64119bb9b4d616f5f3acN.exe

Resource

win7-20240903-en

discovery persistence upx

windows7-x64

10 signatures

120 seconds

Behavioral task

behavioral2

Sample

14325c276cb490f18d1903178292a7f066e35f789f8f64119bb9b4d616f5f3acN.exe

Resource

win10v2004-20240802-en

discovery persistence upx

windows10-2004-x64

10 signatures

120 seconds

Malware Config

Targets

- Target
  
  14325c276cb490f18d1903178292a7f066e35f789f8f64119bb9b4d616f5f3acN
- Size
  
  38KB
- MD5
  
  5966843976360f1a005ac90e1ea83f00
- SHA1
  
  ef795baa0e393a309d93999bd10be52ba0f5d7ae
- SHA256
  
  14325c276cb490f18d1903178292a7f066e35f789f8f64119bb9b4d616f5f3ac
- SHA512
  
  922ff2ea99500d5a641f892042351b00e5f4414b818827c17cc22038fa324a25a5552b6ebe9d4f8d6146ed8fe98528432145ef0f789b13eaea94d5bcf29910ee
- SSDEEP
  
  768:g5BOFKksO1mE9B77777J77c77c77c718nhSobR6vMonug352Ud/vSAODxOamXhGO:g8Fs+DB77777J77c77c77c718h3bR6vN
Score

10^/10

discovery persistence upx
- Modifies WinLogon for persistence
  persistence
- Executes dropped EXE
- Adds Run key to start application
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2

discoverypersistenceupx

© 2018-2025

Terms | Privacy