20487185967e40fc3bae63d974d3a1affca222c6ce8f2411d0628ae0318bca62 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

20487185967e40fc3bae63d974d3a1affca222c6ce8f2411d0628ae0318bca62
Size

63KB
Sample

221020-wxmd1shbcm
MD5

903bf575c43a3a40dcbb8e385ee283c0
SHA1

ea448d15b812ae6761667e7f21773caca357cb2e
SHA256

20487185967e40fc3bae63d974d3a1affca222c6ce8f2411d0628ae0318bca62
SHA512

9eb819221938120a85e366aef4908cfd75f7148dd4b0168498992996a27b0e8cf35ad850df916d947bb2c1f85da71d4fd3e08867348680879262f9cb177c8140
SSDEEP

1536:Q4QQ6NSyM61l19piO+LV8YEoI/EU9RUe4mfGrnt5b8h:Q4X6NSyfnpijeYEoIcq49J8

Score

8^/10

persistence upx

Malware Config

Targets

- Target
  
  20487185967e40fc3bae63d974d3a1affca222c6ce8f2411d0628ae0318bca62
- Size
  
  63KB
- MD5
  
  903bf575c43a3a40dcbb8e385ee283c0
- SHA1
  
  ea448d15b812ae6761667e7f21773caca357cb2e
- SHA256
  
  20487185967e40fc3bae63d974d3a1affca222c6ce8f2411d0628ae0318bca62
- SHA512
  
  9eb819221938120a85e366aef4908cfd75f7148dd4b0168498992996a27b0e8cf35ad850df916d947bb2c1f85da71d4fd3e08867348680879262f9cb177c8140
- SSDEEP
  
  1536:Q4QQ6NSyM61l19piO+LV8YEoI/EU9RUe4mfGrnt5b8h:Q4X6NSyfnpijeYEoIcq49J8
Score

8^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2