9766f49c9656992e17f1ee591d34c269553ff568e2ead89ef8923fd646cee10e | Triage

Submit
Reports

Overview

overview

7

Static

static

3

butterfly_...up.exe

windows10-ltsc 2021-x64

7

Sharing

General

Target

butterfly_viewer_v1.1_win64_setup.exe
Size

28.2MB
Sample

241218-24sr9swrep
MD5

ce1f0ef76887d0493d306180719e12e1
SHA1

63f7ea4f10b4bf2f15f571b178a4ad158e6ad80b
SHA256

9766f49c9656992e17f1ee591d34c269553ff568e2ead89ef8923fd646cee10e
SHA512

899f6bb0b2c706595b37bb4ba7d6ff85770d2422f38d1346dfe90db62362994b68004e423d53fbcba1038cbe1d52f3a911179059d8205fa7dc702afedafd63f7
SSDEEP

786432:MtWFg+rUGljmDc0oGqXr6HchlPykqZCNkY6CL5f:Meg+Y6jmDgO8hl7fl6sf

Score

7^/10

microsoft discovery phishing pyinstaller

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

butterfly_viewer_v1.1_win64_setup.exe

Resource

win10ltsc2021-20241211-es

microsoft discovery phishing pyinstaller

windows10-ltsc 2021-x64

18 signatures

300 seconds

Malware Config

Targets

- Target
  
  butterfly_viewer_v1.1_win64_setup.exe
- Size
  
  28.2MB
- MD5
  
  ce1f0ef76887d0493d306180719e12e1
- SHA1
  
  63f7ea4f10b4bf2f15f571b178a4ad158e6ad80b
- SHA256
  
  9766f49c9656992e17f1ee591d34c269553ff568e2ead89ef8923fd646cee10e
- SHA512
  
  899f6bb0b2c706595b37bb4ba7d6ff85770d2422f38d1346dfe90db62362994b68004e423d53fbcba1038cbe1d52f3a911179059d8205fa7dc702afedafd63f7
- SSDEEP
  
  786432:MtWFg+rUGljmDc0oGqXr6HchlPykqZCNkY6CL5f:Meg+Y6jmDgO8hl7fl6sf
Score

7^/10

microsoft discovery phishing pyinstaller
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Detected potential entity reuse from brand MICROSOFT.
  phishing microsoft
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

microsoftdiscoveryphishingpyinstaller

© 2018-2024

Terms | Privacy