422db788917c415f8572cf9e6d695d88845b7619e557824adcdeb3151e1e5149 | Triage

Submit
Reports

Overview

overview

8

Static

static

8

422db78891...49.exe

windows7-x64

8

422db78891...49.exe

windows10-2004-x64

8

Sharing

General

Target

422db788917c415f8572cf9e6d695d88845b7619e557824adcdeb3151e1e5149
Size

84KB
Sample

221125-j8d6kadd45
MD5

442ef46c074f0bc9eba6af9a87501a84
SHA1

3ac63f86c6cdb670f340aac2c698b0d62fb307d2
SHA256

422db788917c415f8572cf9e6d695d88845b7619e557824adcdeb3151e1e5149
SHA512

f0946c58bdace59946cd711bd056c103b9e0f6e5a31d8910c1f74600d7e25bb59147abfce1d2313c93b4c6c35638a09d1817edae9df28d32b39d7c9c4377809f
SSDEEP

1536:mvwIMUkn5lRjATpx6GWT4T/ajudFN9/1ZbG3tc0vRETDcKqCX3qlha0psPE:UJknVKucT/u4J+3t924KvKljps8

Score

8^/10

discovery persistence upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

422db788917c415f8572cf9e6d695d88845b7619e557824adcdeb3151e1e5149.exe

Resource

win7-20220812-en

discovery persistence upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

422db788917c415f8572cf9e6d695d88845b7619e557824adcdeb3151e1e5149.exe

Resource

win10v2004-20220812-en

discovery persistence upx

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  422db788917c415f8572cf9e6d695d88845b7619e557824adcdeb3151e1e5149
- Size
  
  84KB
- MD5
  
  442ef46c074f0bc9eba6af9a87501a84
- SHA1
  
  3ac63f86c6cdb670f340aac2c698b0d62fb307d2
- SHA256
  
  422db788917c415f8572cf9e6d695d88845b7619e557824adcdeb3151e1e5149
- SHA512
  
  f0946c58bdace59946cd711bd056c103b9e0f6e5a31d8910c1f74600d7e25bb59147abfce1d2313c93b4c6c35638a09d1817edae9df28d32b39d7c9c4377809f
- SSDEEP
  
  1536:mvwIMUkn5lRjATpx6GWT4T/ajudFN9/1ZbG3tc0vRETDcKqCX3qlha0psPE:UJknVKucT/u4J+3t924KvKljps8
Score

8^/10

discovery persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2

discoverypersistenceupx

© 2018-2024

Terms | Privacy