f2e8aa88c73b8775d15647bc2fe6cc4e03a91bc9de44e2249722715f6714ff21 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f2e8aa88c73b8775d15647bc2fe6cc4e03a91bc9de44e2249722715f6714ff21
Size

749KB
Sample

221004-bdx17aeghj
MD5

555f5740175f1e5e829307ccdd28ecce
SHA1

2d29dac4e7159c71916df72da45762313f23aa77
SHA256

f2e8aa88c73b8775d15647bc2fe6cc4e03a91bc9de44e2249722715f6714ff21
SHA512

935a8bbad54696b26ac6cf6cd477cfbc254b989369ca09c8c0fe021633cab54ccdffc4f7b0b759aa82fb876ca381cc14ef33ce7f488eb6e2fece87e1f0ccce24
SSDEEP

12288:iHY4xWsRU6aIBcVG3ozlg+98XXfVN/Dm4Dlj32YPvJp5jvkA5Nk8OrWGK97Tl:d4xhRqI6VG3mKM8XPVNDlTfP5jsA5N5J

Score

8^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  f2e8aa88c73b8775d15647bc2fe6cc4e03a91bc9de44e2249722715f6714ff21
- Size
  
  749KB
- MD5
  
  555f5740175f1e5e829307ccdd28ecce
- SHA1
  
  2d29dac4e7159c71916df72da45762313f23aa77
- SHA256
  
  f2e8aa88c73b8775d15647bc2fe6cc4e03a91bc9de44e2249722715f6714ff21
- SHA512
  
  935a8bbad54696b26ac6cf6cd477cfbc254b989369ca09c8c0fe021633cab54ccdffc4f7b0b759aa82fb876ca381cc14ef33ce7f488eb6e2fece87e1f0ccce24
- SSDEEP
  
  12288:iHY4xWsRU6aIBcVG3ozlg+98XXfVN/Dm4Dlj32YPvJp5jvkA5Nk8OrWGK97Tl:d4xhRqI6VG3mKM8XPVNDlTfP5jsA5N5J
Score

8^/10

discovery persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2