e399d1306a00d6625981ad6f3a066c12925d81bb6d5666369750bc3271f4a763 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

e399d1306a...63.exe

windows7-x64

7

e399d1306a...63.exe

windows10-2004-x64

7

Sharing

General

Target

e399d1306a00d6625981ad6f3a066c12925d81bb6d5666369750bc3271f4a763
Size

374KB
Sample

241102-g11cqa1pbl
MD5

7d1b4a39c8df0c02355ba58bf0d3180f
SHA1

786b6aa3aab3714d78d81b4573530d607532f07a
SHA256

e399d1306a00d6625981ad6f3a066c12925d81bb6d5666369750bc3271f4a763
SHA512

5f334b9cfb0fc10218d14bbe549aa157b1989593d6c63dd384d96f620d6bad1ee7292cf009f4aa797c59777d07db83c1f9afc47eed5ea583a2c84309bced3461
SSDEEP

6144:aLcf19DQCTpV1S2GJYs7kXlQ1IR/Is7P/t1QWiT5H6TgF4G+klOEuKqYgLKrW:aAf1q6pV4jYs7kXlQ8Is7qT5H8P/OOER

Score

7^/10

discovery persistence upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e399d1306a00d6625981ad6f3a066c12925d81bb6d5666369750bc3271f4a763.exe

Resource

win7-20241010-en

discovery persistence upx

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

e399d1306a00d6625981ad6f3a066c12925d81bb6d5666369750bc3271f4a763.exe

Resource

win10v2004-20241007-en

discovery persistence upx

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  e399d1306a00d6625981ad6f3a066c12925d81bb6d5666369750bc3271f4a763
- Size
  
  374KB
- MD5
  
  7d1b4a39c8df0c02355ba58bf0d3180f
- SHA1
  
  786b6aa3aab3714d78d81b4573530d607532f07a
- SHA256
  
  e399d1306a00d6625981ad6f3a066c12925d81bb6d5666369750bc3271f4a763
- SHA512
  
  5f334b9cfb0fc10218d14bbe549aa157b1989593d6c63dd384d96f620d6bad1ee7292cf009f4aa797c59777d07db83c1f9afc47eed5ea583a2c84309bced3461
- SSDEEP
  
  6144:aLcf19DQCTpV1S2GJYs7kXlQ1IR/Is7P/t1QWiT5H6TgF4G+klOEuKqYgLKrW:aAf1q6pV4jYs7kXlQ8Is7qT5H8P/OOER
Score

7^/10

discovery persistence upx
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2

discoverypersistenceupx

© 2018-2024

Terms | Privacy