ec7c97c7f8bea5e4d29c65a5a8bbeb2e5e6c40eacaaad47bf095b935ce5511f3 | Triage

Submit
Reports

Overview

overview

5

Static

static

5

EDa0JKVgKZayN3vH.exe

windows10-2004-x64

1

dControl.exe

windows10-2004-x64

5

guide.pdf

windows10-2004-x64

3

Sharing

General

Target

EDa0JKVgKZayN3vH.zip
Size

26.5MB
Sample

241231-ftn6fayrbs
MD5

84924b275034b9dcc5330ad6fe841393
SHA1

3b05a08a007e2aec32dc581c2989c4a249e04ab6
SHA256

ec7c97c7f8bea5e4d29c65a5a8bbeb2e5e6c40eacaaad47bf095b935ce5511f3
SHA512

a5c8abe817abfa9153ae728f502bc2726307d67cadd5b41688012757800ffd7c1a0ea74ded21fcbf755995113547d907ac5a62e755f2eae55255705fe0ee9ba5
SSDEEP

786432:mdkt/3a73MAZ5EjdwiJKWVcH2Qb8BXz7QG:mS/JAZ5ywiJ03aXAG

Score

5^/10

discovery link pdf upx

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

EDa0JKVgKZayN3vH.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

dControl.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

12 signatures

150 seconds

Behavioral task

behavioral3

Sample

guide.pdf

Resource

win10v2004-20241007-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  EDa0JKVgKZayN3vH.exe
- Size
  
  26.8MB
- MD5
  
  6348ec94b6c6fe00ea65cc3b46646aea
- SHA1
  
  9e97b050f5ac13d868a7689102d80fe5baa3ca81
- SHA256
  
  485ef38cb39064c0da48d4e3a0f4f87ee988b0c2f44dbbd738f463f0200b1f98
- SHA512
  
  20163027ad993cbabcaea93519b737a9707da00ed66f210fc96bad17b9f3bcb45ebc087ece1548c7e6d4e74f9f59e25bc416e99d1946537ec7cbaa195666db70
- SSDEEP
  
  786432:HqxJVoHxtChpBIPDUCLFBrpW0vGwDBWqSOT:CT+opjCLFfW0v3BWqSO
Score

1^/10
behavioral1
- Target
  
  dControl.exe
- Size
  
  447KB
- MD5
  
  58008524a6473bdf86c1040a9a9e39c3
- SHA1
  
  cb704d2e8df80fd3500a5b817966dc262d80ddb8
- SHA256
  
  1ef6c1a4dfdc39b63bfe650ca81ab89510de6c0d3d7c608ac5be80033e559326
- SHA512
  
  8cf492584303523bf6cdfeb6b1b779ee44471c91e759ce32fd4849547b6245d4ed86af5b38d1c6979729a77f312ba91c48207a332ae1589a6e25de67ffb96c31
- SSDEEP
  
  6144:Vzv+kSn74iCmfianQGDM3OXTWRDy9GYQDUmJFXIXHrsUBnBTF8JJCYrYNsQJzfgu:Vzcn7EanlQiWtYhmJFSwUBLcQZfgiD
Score

5^/10

discovery upx
- AutoIT Executable
  AutoIT scripts compiled to PE executables.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral2
- Target
  
  guide.pdf
- Size
  
  2.0MB
- MD5
  
  55bb9445867aed452532dbf986c309ea
- SHA1
  
  142e1f0b806e813cd0ba7704efdb1586daec9604
- SHA256
  
  b4536b5f0aa413b66307d642e04eb8a0c8753cc5c5a9d9eefbbdd7394cf24c86
- SHA512
  
  d874ca538987285664c2a4605e16ba4ed6e6a0b35baabe168da37de4c0972cee9b498efe06b71757489ed9866e48837df142d94b4e0348337af850e9bd687251
- SSDEEP
  
  49152:2J68lR/gWiGGgIAHuDFa8xiQgr87UP7Yy/Qf:2ghRgIAERx1Wrj//S
Score

3^/10

discovery
behavioral3

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

© 2018-2025

Terms | Privacy