91bda1815db46e83bd30c4cdac527e46c1d42d3fda4492493ee2b001fd9b92e7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

91bda1815db46e83bd30c4cdac527e46c1d42d3fda4492493ee2b001fd9b92e7
Size

826KB
Sample

221201-bnbkyafa8y
MD5

86fd6408be69ee3a4ff9c1d085c6dc72
SHA1

5716c66a23b1ee9d22160964aaa36c7d49cb5e39
SHA256

91bda1815db46e83bd30c4cdac527e46c1d42d3fda4492493ee2b001fd9b92e7
SHA512

164caaf0a333c25898b3bd355f6e3df20847289b7823dcc859aa63db24b25b4e6fd7f7521d7d75d83300b053d14dcc393631aeb65edeab02471fc0693c745d5d
SSDEEP

12288:mSVFOBDviXa5E3AxqRBsdHAQM2ieRE5NE4ab96gH3onAf/uEAWZwOW0CAwsmi:mSVFO5viKfqHiE2xREr+ggXwEjvys

Score

8^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  91bda1815db46e83bd30c4cdac527e46c1d42d3fda4492493ee2b001fd9b92e7
- Size
  
  826KB
- MD5
  
  86fd6408be69ee3a4ff9c1d085c6dc72
- SHA1
  
  5716c66a23b1ee9d22160964aaa36c7d49cb5e39
- SHA256
  
  91bda1815db46e83bd30c4cdac527e46c1d42d3fda4492493ee2b001fd9b92e7
- SHA512
  
  164caaf0a333c25898b3bd355f6e3df20847289b7823dcc859aa63db24b25b4e6fd7f7521d7d75d83300b053d14dcc393631aeb65edeab02471fc0693c745d5d
- SSDEEP
  
  12288:mSVFOBDviXa5E3AxqRBsdHAQM2ieRE5NE4ab96gH3onAf/uEAWZwOW0CAwsmi:mSVFO5viKfqHiE2xREr+ggXwEjvys
Score

8^/10

discovery persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2