e206220d9c4340dc718d3505a06fd2116e6ba834bf39ab3e4b6b61ef155ea626 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e206220d9c4340dc718d3505a06fd2116e6ba834bf39ab3e4b6b61ef155ea626
Size

86KB
Sample

221020-ws8rfsghcq
MD5

a03d43d9ce3b3a6c99eaea0704f11b30
SHA1

83ef5062e4a546c95d4a35a0000673d7397205b9
SHA256

e206220d9c4340dc718d3505a06fd2116e6ba834bf39ab3e4b6b61ef155ea626
SHA512

ab4e93bcb9cd168c8f80ab3d8e2f9336c714f55665708417799a7399b532b787d791d45d838bf73035d5c19893857f6bf11d079be167aa7a46d276489092e82c
SSDEEP

1536:5lrsicagdzn8K2ariPOcjk+XQuPVN72NMSTnGT5tiL6ZvYJ0:5JjcF8KfCOcjk+guPVjSTnW5t/v3

Score

8^/10

persistence upx

Malware Config

Targets

- Target
  
  e206220d9c4340dc718d3505a06fd2116e6ba834bf39ab3e4b6b61ef155ea626
- Size
  
  86KB
- MD5
  
  a03d43d9ce3b3a6c99eaea0704f11b30
- SHA1
  
  83ef5062e4a546c95d4a35a0000673d7397205b9
- SHA256
  
  e206220d9c4340dc718d3505a06fd2116e6ba834bf39ab3e4b6b61ef155ea626
- SHA512
  
  ab4e93bcb9cd168c8f80ab3d8e2f9336c714f55665708417799a7399b532b787d791d45d838bf73035d5c19893857f6bf11d079be167aa7a46d276489092e82c
- SSDEEP
  
  1536:5lrsicagdzn8K2ariPOcjk+XQuPVN72NMSTnGT5tiL6ZvYJ0:5JjcF8KfCOcjk+guPVjSTnW5t/v3
Score

8^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2