5ec976dfaa3fa88b89644d6a97ba9e01e65146d46480c94b02780565ae5c01f7 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

releases

windows11-21h2-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

releases
Size

173KB
Sample

241009-vzt17szejk
MD5

aa089edb33232e64d853a863d5e3c4b9
SHA1

937215171a70d065eca3c44120876f84debc4fb5
SHA256

5ec976dfaa3fa88b89644d6a97ba9e01e65146d46480c94b02780565ae5c01f7
SHA512

a9dcd1f71e75c2200f8e254d1cb37c68caa91d9a1ad3c7ae57282be2cb138d23a7703cfa1b1f0112b46d7eaa8eafdfae9f5875f3dbe2164d9a6d7f5845658626
SSDEEP

3072:nQWGuJaeSVaEfSCgda8tgXD6OOMe9cWTBRAG/FxC7Zr1j13Kq9Aoy1j13KUpAzWb:EmovWpOL/saqkPV9FxLtcsDSsmwu9lvb

Score

8^/10

defense_evasion discovery

Static task

static1

Behavioral task

behavioral1

Sample

releases

Resource

win11-20241007-en

defense_evasion discovery

windows11-21h2-x64

15 signatures

150 seconds

Malware Config

Targets

- Target
  
  releases
- Size
  
  173KB
- MD5
  
  aa089edb33232e64d853a863d5e3c4b9
- SHA1
  
  937215171a70d065eca3c44120876f84debc4fb5
- SHA256
  
  5ec976dfaa3fa88b89644d6a97ba9e01e65146d46480c94b02780565ae5c01f7
- SHA512
  
  a9dcd1f71e75c2200f8e254d1cb37c68caa91d9a1ad3c7ae57282be2cb138d23a7703cfa1b1f0112b46d7eaa8eafdfae9f5875f3dbe2164d9a6d7f5845658626
- SSDEEP
  
  3072:nQWGuJaeSVaEfSCgda8tgXD6OOMe9cWTBRAG/FxC7Zr1j13Kq9Aoy1j13KUpAzWb:EmovWpOL/saqkPV9FxLtcsDSsmwu9lvb
Score

8^/10

defense_evasion discovery
- Downloads MZ/PE file
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

SIP and Trust Provider Hijacking

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

© 2018-2025

Terms | Privacy