400e7dec5821accbb84949dc90442dd8015e259a131fe1c88f12d811be4e49ea | Triage

Sharing

General

Target

400e7dec5821accbb84949dc90442dd8015e259a131fe1c88f12d811be4e49ea
Size

71KB
Sample

221123-ltjhvaff8v
MD5

3e8afe7d4a572ce2c2393c0b46a4cce0
SHA1

04f797979033c1641551320bda25c782d74f12f9
SHA256

400e7dec5821accbb84949dc90442dd8015e259a131fe1c88f12d811be4e49ea
SHA512

408c3cb153b17cdd88bb91e354ca966ef55e4781f069e5be3e1b24a575f578e8eafba7151754c0866532e9626417aa17a35d48a3b7d0dbf4dc2bd8666636d550
SSDEEP

1536:7pV9Xq6oM+G539czabw/TCtxvUryRBieyet1dGg0sGpxxfP5Te:1DXq6oytIab6G1UmBieyerdGoGpXt

Score

10^/10

persistence upx

Malware Config

Targets

- Target
  
  400e7dec5821accbb84949dc90442dd8015e259a131fe1c88f12d811be4e49ea
- Size
  
  71KB
- MD5
  
  3e8afe7d4a572ce2c2393c0b46a4cce0
- SHA1
  
  04f797979033c1641551320bda25c782d74f12f9
- SHA256
  
  400e7dec5821accbb84949dc90442dd8015e259a131fe1c88f12d811be4e49ea
- SHA512
  
  408c3cb153b17cdd88bb91e354ca966ef55e4781f069e5be3e1b24a575f578e8eafba7151754c0866532e9626417aa17a35d48a3b7d0dbf4dc2bd8666636d550
- SSDEEP
  
  1536:7pV9Xq6oM+G539czabw/TCtxvUryRBieyet1dGg0sGpxxfP5Te:1DXq6oytIab6G1UmBieyerdGoGpXt
Score

10^/10

persistence upx
- Modifies WinLogon for persistence
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2