4cd2770019a6b3805f634040b15036302e59f8ab2002998c0a77515986d895a7 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

PYXXW.exe

windows10-2004-x64

7

Resubmissions

21-11-2024 10:49

241121-mwpcjssblr 7

21-11-2024 10:37

241121-mnt8tswkbk 7

Sharing

General

Target

PYXXW.exe
Size

2.2MB
Sample

241121-mwpcjssblr
MD5

0c31c740de5447523acc97e4e5154169
SHA1

4e43466e669b8666ab87fc7e4ac2cc28512d8068
SHA256

4cd2770019a6b3805f634040b15036302e59f8ab2002998c0a77515986d895a7
SHA512

39616f98b1b1e1f24180fc0bfef247c249c51c6e823be1a9ce6f59e55e2997e850db192f3befb774421a530131e2b9436859372eca382e0dc7529a4fbeea1a6b
SSDEEP

24576:nawwKusHwEwSDMnWWTeXrzZw/BSCpC8Uy/BHNs6rkHOQQ8e4Vl03RMDF9E5WwYEI:3wREDDMtWw/Ex6sPO6V6GF9wYERyH

Score

7^/10

discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

PYXXW.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

10 signatures

1800 seconds

Malware Config

Targets

- Target
  
  PYXXW.exe
- Size
  
  2.2MB
- MD5
  
  0c31c740de5447523acc97e4e5154169
- SHA1
  
  4e43466e669b8666ab87fc7e4ac2cc28512d8068
- SHA256
  
  4cd2770019a6b3805f634040b15036302e59f8ab2002998c0a77515986d895a7
- SHA512
  
  39616f98b1b1e1f24180fc0bfef247c249c51c6e823be1a9ce6f59e55e2997e850db192f3befb774421a530131e2b9436859372eca382e0dc7529a4fbeea1a6b
- SSDEEP
  
  24576:nawwKusHwEwSDMnWWTeXrzZw/BSCpC8Uy/BHNs6rkHOQQ8e4Vl03RMDF9E5WwYEI:3wREDDMtWw/Ex6sPO6V6GF9wYERyH
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy