16b86e481993524c64628487d1ba6e5b8e3c2d448056da0f3f81e6735ae760ea | Triage

Sharing

General

Target

16b86e481993524c64628487d1ba6e5b8e3c2d448056da0f3f81e6735ae760ea
Size

85KB
Sample

221020-ww4xnshahn
MD5

a01b2e9ee3e8d16a38c9706cc8a88ca0
SHA1

4bfcd738bd31f2b555d44836bf214c331d4a2423
SHA256

16b86e481993524c64628487d1ba6e5b8e3c2d448056da0f3f81e6735ae760ea
SHA512

e83d23ef411e0435693efc50a08cd04f4cbbd012a4825c4182858f4a70409e9c6135f99965d55bde26853a13194f3f34bf19277bf5cb2d2743eac32b58ec421d
SSDEEP

1536:5lrsicagdzn8K2ariPOcjk+XQuPVN72NMSIuz/8AjvQo:5JjcF8KfCOcjk+guPVjSI0z

Score

8^/10

persistence upx

Malware Config

Targets

- Target
  
  16b86e481993524c64628487d1ba6e5b8e3c2d448056da0f3f81e6735ae760ea
- Size
  
  85KB
- MD5
  
  a01b2e9ee3e8d16a38c9706cc8a88ca0
- SHA1
  
  4bfcd738bd31f2b555d44836bf214c331d4a2423
- SHA256
  
  16b86e481993524c64628487d1ba6e5b8e3c2d448056da0f3f81e6735ae760ea
- SHA512
  
  e83d23ef411e0435693efc50a08cd04f4cbbd012a4825c4182858f4a70409e9c6135f99965d55bde26853a13194f3f34bf19277bf5cb2d2743eac32b58ec421d
- SSDEEP
  
  1536:5lrsicagdzn8K2ariPOcjk+XQuPVN72NMSIuz/8AjvQo:5JjcF8KfCOcjk+guPVjSI0z
Score

8^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2