408e44add9251a6645d9bbaff6ab75172f0dca2baff91446378f98aaeedd5ae7 | Triage

Sharing

General

Target

408e44add9251a6645d9bbaff6ab75172f0dca2baff91446378f98aaeedd5ae7
Size

90KB
Sample

221019-xs172sdeam
MD5

a2528dc044869a42fa464adbf55ac910
SHA1

97537f6a5ad89e3482ea9b16eba7a9b1d74924fe
SHA256

408e44add9251a6645d9bbaff6ab75172f0dca2baff91446378f98aaeedd5ae7
SHA512

442800e7b3989304cc48eb13cc2240fbc557e6708410b424f7921c2f19e2b5fba63b85fc780165fdfee5f6cbadc9d87735ea1932cf68dd6886f0effe0e9d12e3
SSDEEP

1536:5lrsicagdzn8K2ariPOcjk+XQuPVN72NMSI5kntOdUGR/Y63upyNa5z8:5JjcF8KfCOcjk+guPVjS0y8dUGFvup/o

Score

8^/10

persistence upx

Malware Config

Targets

- Target
  
  408e44add9251a6645d9bbaff6ab75172f0dca2baff91446378f98aaeedd5ae7
- Size
  
  90KB
- MD5
  
  a2528dc044869a42fa464adbf55ac910
- SHA1
  
  97537f6a5ad89e3482ea9b16eba7a9b1d74924fe
- SHA256
  
  408e44add9251a6645d9bbaff6ab75172f0dca2baff91446378f98aaeedd5ae7
- SHA512
  
  442800e7b3989304cc48eb13cc2240fbc557e6708410b424f7921c2f19e2b5fba63b85fc780165fdfee5f6cbadc9d87735ea1932cf68dd6886f0effe0e9d12e3
- SSDEEP
  
  1536:5lrsicagdzn8K2ariPOcjk+XQuPVN72NMSI5kntOdUGR/Y63upyNa5z8:5JjcF8KfCOcjk+guPVjS0y8dUGFvup/o
Score

8^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2