cd062baf4cbe00f3fddf1370c0571a4d40dbbf0387b1e280f0d9ff5669f660f7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cd062baf4cbe00f3fddf1370c0571a4d40dbbf0387b1e280f0d9ff5669f660f7
Size

828KB
Sample

221203-p55f8sfc8v
MD5

44be5e68041bed1d44e7741f4327800f
SHA1

f1c2a9777b2db51ddd15987106ff7afceeaf0b55
SHA256

cd062baf4cbe00f3fddf1370c0571a4d40dbbf0387b1e280f0d9ff5669f660f7
SHA512

d555ef8e1c22ab3a5ff8e3e76cb1f54f61356051fd16bbd6d40453aea44c065c00b4b489874fe818ec4e64a4860c5ab1e2faf4ab1e886af36895f4db91469fff
SSDEEP

12288:sl7BPN2H4Shb3crCQa0/beK6gVrEZsWmUvGiPk6XIua2cGE9NuSkOzMOZWz:uNs3b33XZlMQzmUvhkBRGE/uSdzPC

Score

8^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  cd062baf4cbe00f3fddf1370c0571a4d40dbbf0387b1e280f0d9ff5669f660f7
- Size
  
  828KB
- MD5
  
  44be5e68041bed1d44e7741f4327800f
- SHA1
  
  f1c2a9777b2db51ddd15987106ff7afceeaf0b55
- SHA256
  
  cd062baf4cbe00f3fddf1370c0571a4d40dbbf0387b1e280f0d9ff5669f660f7
- SHA512
  
  d555ef8e1c22ab3a5ff8e3e76cb1f54f61356051fd16bbd6d40453aea44c065c00b4b489874fe818ec4e64a4860c5ab1e2faf4ab1e886af36895f4db91469fff
- SSDEEP
  
  12288:sl7BPN2H4Shb3crCQa0/beK6gVrEZsWmUvGiPk6XIua2cGE9NuSkOzMOZWz:uNs3b33XZlMQzmUvhkBRGE/uSdzPC
Score

8^/10

discovery persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2