2e67d5e7d96aec62a9dda4c0259167a44908af863c2b3af2a019723205abba9e | Triage

Submit
Reports

Overview

overview

8

Static

static

5

AutoClicker-3.0.exe

windows11-21h2-x64

8

Resubmissions

19-12-2024 11:32

241219-nnswfasnds 8

19-12-2024 11:31

241219-nmrxrasmhy 10

19-12-2024 11:28

241219-nlhbxssqer 5

19-12-2024 11:15

241219-nclyrasmfr 10

Sharing

General

Target

AutoClicker-3.0.exe
Size

844KB
Sample

241219-nnswfasnds
MD5

7ecfc8cd7455dd9998f7dad88f2a8a9d
SHA1

1751d9389adb1e7187afa4938a3559e58739dce6
SHA256

2e67d5e7d96aec62a9dda4c0259167a44908af863c2b3af2a019723205abba9e
SHA512

cb05e82b17c0f7444d1259b661f0c1e6603d8a959da7475f35078a851d528c630366916c17a37db1a2490af66e5346309177c9e31921d09e7e795492868e678d
SSDEEP

12288:GaWzgMg7v3qnCiWErQohh0F49CJ8lnybQg9BFg9UmTRHlM:BaHMv6CGrjBnybQg+mmhG

Score

8^/10

defense_evasion discovery evasion upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

AutoClicker-3.0.exe

Resource

win11-20241007-en

defense_evasion discovery evasion upx

windows11-21h2-x64

24 signatures

150 seconds

Malware Config

Targets

- Target
  
  AutoClicker-3.0.exe
- Size
  
  844KB
- MD5
  
  7ecfc8cd7455dd9998f7dad88f2a8a9d
- SHA1
  
  1751d9389adb1e7187afa4938a3559e58739dce6
- SHA256
  
  2e67d5e7d96aec62a9dda4c0259167a44908af863c2b3af2a019723205abba9e
- SHA512
  
  cb05e82b17c0f7444d1259b661f0c1e6603d8a959da7475f35078a851d528c630366916c17a37db1a2490af66e5346309177c9e31921d09e7e795492868e678d
- SSDEEP
  
  12288:GaWzgMg7v3qnCiWErQohh0F49CJ8lnybQg9BFg9UmTRHlM:BaHMv6CGrjBnybQg+mmhG
Score

8^/10

defense_evasion discovery evasion upx
- Disables Task Manager via registry modification
  evasion
- Downloads MZ/PE file
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

SIP and Trust Provider Hijacking

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscoveryevasionupx

© 2018-2024

Terms | Privacy