empyrean | 671cc5a65afc7ca66f128fe27abd168f312a92831d21dc1a61576bd1e9bd30fc | Triage

Submit
Reports

Overview

overview

Static

static

VLH.exe

windows10-2004-x64

7

main.pyc

windows10-2004-x64

3

Sharing

General

Target

VLH.exe
Size

16.3MB
Sample

241031-rmxpsazdpc
MD5

fbeaeced0167cabcd461fa26a60c758a
SHA1

961f69036d2bc7d73274f43e0eb2e601f94f2c9b
SHA256

671cc5a65afc7ca66f128fe27abd168f312a92831d21dc1a61576bd1e9bd30fc
SHA512

73709ca8b2ea01a974b94f14b9d314a47ffbcafd24d4018f670d52a5cd136e15171b5b1b51d6abf0ce7003e0ea320ec49b63caaafeaa58acf46301095ee94632
SSDEEP

196608:bx/lOqPnih8FEmN+6QjGSeB0sKYu/PaQAKDnO8NpHzgsAGKaR5tG7w9FHgl90MFp:eqPnLFXljQJDOETgsvfGUngOGvGmkq

Score

10^/10

empyrean pyinstaller upx

Static task

static1

pyinstaller empyrean

4 signatures

Behavioral task

behavioral1

Sample

VLH.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

4 signatures

60 seconds

Behavioral task

behavioral2

Sample

main.pyc

Resource

win10v2004-20241007-en

windows10-2004-x64

3 signatures

60 seconds

Malware Config

Targets

- Target
  
  VLH.exe
- Size
  
  16.3MB
- MD5
  
  fbeaeced0167cabcd461fa26a60c758a
- SHA1
  
  961f69036d2bc7d73274f43e0eb2e601f94f2c9b
- SHA256
  
  671cc5a65afc7ca66f128fe27abd168f312a92831d21dc1a61576bd1e9bd30fc
- SHA512
  
  73709ca8b2ea01a974b94f14b9d314a47ffbcafd24d4018f670d52a5cd136e15171b5b1b51d6abf0ce7003e0ea320ec49b63caaafeaa58acf46301095ee94632
- SSDEEP
  
  196608:bx/lOqPnih8FEmN+6QjGSeB0sKYu/PaQAKDnO8NpHzgsAGKaR5tG7w9FHgl90MFp:eqPnLFXljQJDOETgsvfGUngOGvGmkq
Score

7^/10

upx
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1
- Target
  
  main.pyc
- Size
  
  7KB
- MD5
  
  835bc82589d7ccdc63e37a99a1f2fc72
- SHA1
  
  ebb15f2e7a811c66faf007e75844862d8c0bf84c
- SHA256
  
  6fa1f4a88521b7278b1961c2ba8b642fa96825f9cf6aaaadb5fa453b8abcfbef
- SHA512
  
  196bbd322923021a8ec9fa1343016419e5ed39eac43445aef78837a14e24df021d2bf5bc35ca6507454f09d5949ad2ce9437a8e4228091655a120ddb19ac20f0
- SSDEEP
  
  192:wsjx1efuVPD8m6amcWdXwgJPJ4p30CfJhwP48MdwhHnw:H8uVF6ajWuN2w8PJw
Score

3^/10
behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

pyinstallerempyrean

behavioral1

behavioral2

© 2018-2024

Terms | Privacy