61bb3f089a4d212dc4aca48df68678cfca20fe505b879e6980ef6a812f479fb9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

61bb3f089a4d212dc4aca48df68678cfca20fe505b879e6980ef6a812f479fb9
Size

48KB
Sample

221201-pkyg7afg73
MD5

966d8f607fa55985bfbde83713655ef7
SHA1

786eb94ab4153b579c1a73ada49fa88f5c14d0a8
SHA256

61bb3f089a4d212dc4aca48df68678cfca20fe505b879e6980ef6a812f479fb9
SHA512

d1e48fb7cdf9b7be92f3fab2e75aea4922512a2487365b5eb56bdaa7ac24328f54175f58e69cb75bc13d15b80f911cdc48ad1e213c769858a1a872f2e5ca06d9
SSDEEP

768:MEyjLPYrsRjHpU8YfsYAP73c7kn8zkBc5EARElPt96+2VWAGlHIqFfGMr4BOgZsM:qLPYr+JU8YkYAGk8wOtR50jlTotlCts

Score

10^/10

evasion trojan upx

Malware Config

Targets

- Target
  
  61bb3f089a4d212dc4aca48df68678cfca20fe505b879e6980ef6a812f479fb9
- Size
  
  48KB
- MD5
  
  966d8f607fa55985bfbde83713655ef7
- SHA1
  
  786eb94ab4153b579c1a73ada49fa88f5c14d0a8
- SHA256
  
  61bb3f089a4d212dc4aca48df68678cfca20fe505b879e6980ef6a812f479fb9
- SHA512
  
  d1e48fb7cdf9b7be92f3fab2e75aea4922512a2487365b5eb56bdaa7ac24328f54175f58e69cb75bc13d15b80f911cdc48ad1e213c769858a1a872f2e5ca06d9
- SSDEEP
  
  768:MEyjLPYrsRjHpU8YfsYAP73c7kn8zkBc5EARElPt96+2VWAGlHIqFfGMr4BOgZsM:qLPYr+JU8YkYAGk8wOtR50jlTotlCts
Score

10^/10

evasion trojan upx
- UAC bypass
  evasion trojan
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Bypass User Account Control

Defense Evasion

Bypass User Account Control

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasiontrojanupx

behavioral2

evasiontrojanupx