a6a3bdb50600fdecda82c79e41c0c193c3f90ca6b3c769d40fe7b029359377d0 | Triage

Sharing

General

Target

a6a3bdb50600fdecda82c79e41c0c193c3f90ca6b3c769d40fe7b029359377d0
Size

69KB
Sample

221124-z1xkyaab66
MD5

fdd5d4b6f1d026fc1465a7b9ab8c9495
SHA1

a54c683a6f62b806c3449a16aed99100353964b6
SHA256

a6a3bdb50600fdecda82c79e41c0c193c3f90ca6b3c769d40fe7b029359377d0
SHA512

64a33f8069a2bf8829ac22a2d239364ff95438c988b16d4d4776e311cf47a37a25e3a4ec5269cc78c372742a7752fdd37b7b70aa6878d0b88b00aae72e7f7648
SSDEEP

1536:wn1jhduXkQ3w86ShskbFkITcX4y6q7FHinKTlrtb:iduXZ3jhsG7Tk43qLl

Score

6^/10

persistence

Malware Config

Targets

- Target
  
  PizzaHut_Coupon.exe
- Size
  
  106KB
- MD5
  
  aedbd2c5f9c444b3c90ea82e261006dd
- SHA1
  
  81dbb9ddce3ded33e4ebc08b68dcaa85905536d7
- SHA256
  
  ee72178b9ab8e9e351a73b2665aaaf2a105282786fba9f7742544688b0f08093
- SHA512
  
  60c1f421ae1ad06d0a5a144a042b1b76090310fdfc816582979a7db2a637054f6ff55eb5b6309e6b7419d84ba591e1c62009ef3a1aa30c3bb2d13c9f63b85d43
- SSDEEP
  
  3072:L3c36b8x/Mh0Z1M9KS4q9mnIhEoaL5KVDVKjrhCA:Y36b8dM+HvBLpLYDViFCA
Score

6^/10

persistence
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2