d1543013d06426ca703680b0a1721f92ea84ec6b0173fc0dc563afb87c03fc0a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d1543013d06426ca703680b0a1721f92ea84ec6b0173fc0dc563afb87c03fc0a
Size

825KB
Sample

221201-vq9ejaae88
MD5

c1f65ea9df06f9e57a7809bc884ca5c6
SHA1

86fb59ee37ba9e3442115301a4612536428a8748
SHA256

d1543013d06426ca703680b0a1721f92ea84ec6b0173fc0dc563afb87c03fc0a
SHA512

962200992708cfbeb2ce272bcb3fc87f0207cd3da1132d0699ed2dad2509df9a7ca79ca4288e485330b9d1aa0d85f45f13190fe19430fd3c6c5321cdae7f44ab
SSDEEP

24576:3pJWBOzPnLfhq6sLPyqaUtCTApibrhhFS1Nchzmd73:3TPLc7ztumwSXqzE

Score

8^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  d1543013d06426ca703680b0a1721f92ea84ec6b0173fc0dc563afb87c03fc0a
- Size
  
  825KB
- MD5
  
  c1f65ea9df06f9e57a7809bc884ca5c6
- SHA1
  
  86fb59ee37ba9e3442115301a4612536428a8748
- SHA256
  
  d1543013d06426ca703680b0a1721f92ea84ec6b0173fc0dc563afb87c03fc0a
- SHA512
  
  962200992708cfbeb2ce272bcb3fc87f0207cd3da1132d0699ed2dad2509df9a7ca79ca4288e485330b9d1aa0d85f45f13190fe19430fd3c6c5321cdae7f44ab
- SSDEEP
  
  24576:3pJWBOzPnLfhq6sLPyqaUtCTApibrhhFS1Nchzmd73:3TPLc7ztumwSXqzE
Score

8^/10

discovery persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2