cb4f31660138e75b02a5b681823038a2da0d3cbec30f8a5a39482612f34294f7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cb4f31660138e75b02a5b681823038a2da0d3cbec30f8a5a39482612f34294f7
Size

825KB
Sample

221106-h9f6waccck
MD5

21a40c0bcfac6796e60c15658034a3d2
SHA1

68fe05d2d93ed17307628993f1f54bf5073290ee
SHA256

cb4f31660138e75b02a5b681823038a2da0d3cbec30f8a5a39482612f34294f7
SHA512

0a8df349d28337063e2c8a86503b9c97a887100c2918eb6e268f0654d746dc436367c8e133263f44ebf8d2213e851a94afc893315842be9fb3a0a84b71b54220
SSDEEP

24576:wYPg5h5fJ65XAqjWs8kUZAF+8s7/vI+DLrSgR:wYPgBfbqKTTZg+8s73I4

Score

8^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  cb4f31660138e75b02a5b681823038a2da0d3cbec30f8a5a39482612f34294f7
- Size
  
  825KB
- MD5
  
  21a40c0bcfac6796e60c15658034a3d2
- SHA1
  
  68fe05d2d93ed17307628993f1f54bf5073290ee
- SHA256
  
  cb4f31660138e75b02a5b681823038a2da0d3cbec30f8a5a39482612f34294f7
- SHA512
  
  0a8df349d28337063e2c8a86503b9c97a887100c2918eb6e268f0654d746dc436367c8e133263f44ebf8d2213e851a94afc893315842be9fb3a0a84b71b54220
- SSDEEP
  
  24576:wYPg5h5fJ65XAqjWs8kUZAF+8s7/vI+DLrSgR:wYPgBfbqKTTZg+8s73I4
Score

8^/10

discovery persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2