e1a42e9542fa855410ae940fe97b483279573fd1f262bd6e4f511d372c99b5af | Triage

Sharing

General

Target

e1a42e9542fa855410ae940fe97b483279573fd1f262bd6e4f511d372c99b5af
Size

825KB
Sample

221201-t7dthsge24
MD5

67d127099bdf2a91016f0b7847accd61
SHA1

8fe89b14f909c7a95b6af42f95a1d4b7253189b5
SHA256

e1a42e9542fa855410ae940fe97b483279573fd1f262bd6e4f511d372c99b5af
SHA512

55b6ca0c49bd12b819e098fb439739d930544fb3650e010de9011c16f2d9f066e5d415af7d9bf9f10dbebb6d959169107aae0648a76c88775c2859dfd2210e2f
SSDEEP

24576:x49PQC6JhIkcX/vYiMfcOI4SdCVBudS9K4aV8qddrf6lu:C/SPwvkkOI4sroKf7Al

Score

8^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  e1a42e9542fa855410ae940fe97b483279573fd1f262bd6e4f511d372c99b5af
- Size
  
  825KB
- MD5
  
  67d127099bdf2a91016f0b7847accd61
- SHA1
  
  8fe89b14f909c7a95b6af42f95a1d4b7253189b5
- SHA256
  
  e1a42e9542fa855410ae940fe97b483279573fd1f262bd6e4f511d372c99b5af
- SHA512
  
  55b6ca0c49bd12b819e098fb439739d930544fb3650e010de9011c16f2d9f066e5d415af7d9bf9f10dbebb6d959169107aae0648a76c88775c2859dfd2210e2f
- SSDEEP
  
  24576:x49PQC6JhIkcX/vYiMfcOI4SdCVBudS9K4aV8qddrf6lu:C/SPwvkkOI4sroKf7Al
Score

8^/10

discovery persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2