6585fbe34940289e37461d8a0b69923dfd62f2cbe826cec4d51ad220cd417cd3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6585fbe34940289e37461d8a0b69923dfd62f2cbe826cec4d51ad220cd417cd3
Size

69KB
Sample

221001-wrxmsshha2
MD5

551d94dcd1a6c560def1bd54457a9bcc
SHA1

328d7b0d5caa41f5be3686cb97b371d904534a02
SHA256

6585fbe34940289e37461d8a0b69923dfd62f2cbe826cec4d51ad220cd417cd3
SHA512

75bef675ff135ad905faaca832ed2b459d7f210cf498ed6df6a198583824805003158b7ae670901c06349426fea387b6a510453a67529f870ef5ba024a35e872
SSDEEP

1536:MHoSCdeVMCT6ggMw4Y7FgG2xV89mTr39w6XJJzVt/2YRmA7LZP:MHoLde/OgV432UcP39hXJZn/UELZP

Score

8^/10

persistence upx

Malware Config

Targets

- Target
  
  6585fbe34940289e37461d8a0b69923dfd62f2cbe826cec4d51ad220cd417cd3
- Size
  
  69KB
- MD5
  
  551d94dcd1a6c560def1bd54457a9bcc
- SHA1
  
  328d7b0d5caa41f5be3686cb97b371d904534a02
- SHA256
  
  6585fbe34940289e37461d8a0b69923dfd62f2cbe826cec4d51ad220cd417cd3
- SHA512
  
  75bef675ff135ad905faaca832ed2b459d7f210cf498ed6df6a198583824805003158b7ae670901c06349426fea387b6a510453a67529f870ef5ba024a35e872
- SSDEEP
  
  1536:MHoSCdeVMCT6ggMw4Y7FgG2xV89mTr39w6XJJzVt/2YRmA7LZP:MHoLde/OgV432UcP39hXJZn/UELZP
Score

8^/10

persistence upx
- Modifies AppInit DLL entries
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2