d3004e06091e995b73e081a9ad7cb75803b06281f25ae5e71fd8452397c01569 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

d3004e0609...9N.exe

windows7-x64

7

d3004e0609...9N.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

d3004e06091e995b73e081a9ad7cb75803b06281f25ae5e71fd8452397c01569N
Size

693KB
Sample

241012-y51byszbnc
MD5

8d456d34359a802d5c23805e861b19f0
SHA1

480580d43582f39f37e8ca84e24a0eb879bef515
SHA256

d3004e06091e995b73e081a9ad7cb75803b06281f25ae5e71fd8452397c01569
SHA512

49871cfd9e758dc0c9834e7735191d8fb435b3753da1c75d4a2959cba73d8aff96339f7d714d60f269e2193b3004d01160bb6eedc5d1d757a578562f4d9892d4
SSDEEP

12288:YKuwGR6O38ZGljaN1omcA5rs3MBis4h8EHb6N/25dMB2tuMkmfa+OrOcRy:YKrkda1Dx5rZBiz8E2NOrMB0G/y

Score

7^/10

discovery persistence upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

d3004e06091e995b73e081a9ad7cb75803b06281f25ae5e71fd8452397c01569N.exe

Resource

win7-20240903-en

discovery persistence upx

windows7-x64

15 signatures

120 seconds

Behavioral task

behavioral2

Sample

d3004e06091e995b73e081a9ad7cb75803b06281f25ae5e71fd8452397c01569N.exe

Resource

win10v2004-20241007-en

discovery persistence upx

windows10-2004-x64

15 signatures

120 seconds

Malware Config

Targets

- Target
  
  d3004e06091e995b73e081a9ad7cb75803b06281f25ae5e71fd8452397c01569N
- Size
  
  693KB
- MD5
  
  8d456d34359a802d5c23805e861b19f0
- SHA1
  
  480580d43582f39f37e8ca84e24a0eb879bef515
- SHA256
  
  d3004e06091e995b73e081a9ad7cb75803b06281f25ae5e71fd8452397c01569
- SHA512
  
  49871cfd9e758dc0c9834e7735191d8fb435b3753da1c75d4a2959cba73d8aff96339f7d714d60f269e2193b3004d01160bb6eedc5d1d757a578562f4d9892d4
- SSDEEP
  
  12288:YKuwGR6O38ZGljaN1omcA5rs3MBis4h8EHb6N/25dMB2tuMkmfa+OrOcRy:YKrkda1Dx5rZBiz8E2NOrMB0G/y
Score

7^/10

discovery persistence upx
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2

discoverypersistenceupx

© 2018-2025

Terms | Privacy