ab2f13c6f842a0c3ee004895d7672f471f2a1e67797373243ec45d11570f953d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ab2f13c6f842a0c3ee004895d7672f471f2a1e67797373243ec45d11570f953d
Size

749KB
Sample

221130-3kmbtaab3x
MD5

62df61f58ecaf8ba5fcf923809fdcaed
SHA1

572fd9db0e1627b5febf492e4a618b4e6b88aee6
SHA256

ab2f13c6f842a0c3ee004895d7672f471f2a1e67797373243ec45d11570f953d
SHA512

b6310a47196fdf3634fc251d9ddc751072837a652c77f1c314d07b638c6a9fbfb140329c56d7169ee93f3169936d53179d7eb12dbe99e7b1ddd94a04a0ea35f2
SSDEEP

12288:inlFK1hJkgb8rlNLRNF1pXPmH3cjKz+HKWo3np5MVdougESW2Iek3MaKhk:aFK+NRjPLqb3pyVkQjR3MaKa

Score

8^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  ab2f13c6f842a0c3ee004895d7672f471f2a1e67797373243ec45d11570f953d
- Size
  
  749KB
- MD5
  
  62df61f58ecaf8ba5fcf923809fdcaed
- SHA1
  
  572fd9db0e1627b5febf492e4a618b4e6b88aee6
- SHA256
  
  ab2f13c6f842a0c3ee004895d7672f471f2a1e67797373243ec45d11570f953d
- SHA512
  
  b6310a47196fdf3634fc251d9ddc751072837a652c77f1c314d07b638c6a9fbfb140329c56d7169ee93f3169936d53179d7eb12dbe99e7b1ddd94a04a0ea35f2
- SSDEEP
  
  12288:inlFK1hJkgb8rlNLRNF1pXPmH3cjKz+HKWo3np5MVdougESW2Iek3MaKhk:aFK+NRjPLqb3pyVkQjR3MaKa
Score

8^/10

discovery persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2