64f94a730f4a73d291bc620f7440952be86f573fecd65d606f34e03342c3f3e4 | Triage

Sharing

General

Target

64f94a730f4a73d291bc620f7440952be86f573fecd65d606f34e03342c3f3e4
Size

827KB
Sample

221106-klj9qsefbp
MD5

0a630138e4cfb57388018de853fd243e
SHA1

8433cc50bfc68b5f0e8cd1a47ab4cc2847e747e1
SHA256

64f94a730f4a73d291bc620f7440952be86f573fecd65d606f34e03342c3f3e4
SHA512

db0ff351e7238b822fd610d69983571b3103a38efebb832c91767be696d0f218beb2b776c295149c3754f150d4ed55946ba2ceae3a4acfd1e4008f8159fe273d
SSDEEP

12288:EmKEbPAwDUjiWt4Qx7TzySWaM6LF/cs2DmWxz3EIFnE6O5:IQowDb24Qxvzyh0CJDzxLje

Score

8^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  64f94a730f4a73d291bc620f7440952be86f573fecd65d606f34e03342c3f3e4
- Size
  
  827KB
- MD5
  
  0a630138e4cfb57388018de853fd243e
- SHA1
  
  8433cc50bfc68b5f0e8cd1a47ab4cc2847e747e1
- SHA256
  
  64f94a730f4a73d291bc620f7440952be86f573fecd65d606f34e03342c3f3e4
- SHA512
  
  db0ff351e7238b822fd610d69983571b3103a38efebb832c91767be696d0f218beb2b776c295149c3754f150d4ed55946ba2ceae3a4acfd1e4008f8159fe273d
- SSDEEP
  
  12288:EmKEbPAwDUjiWt4Qx7TzySWaM6LF/cs2DmWxz3EIFnE6O5:IQowDb24Qxvzyh0CJDzxLje
Score

8^/10

discovery persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2