9faf59729463be0b32c07937d0c6ec9d2d5f1179403f64b47404822dc48e95f4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9faf59729463be0b32c07937d0c6ec9d2d5f1179403f64b47404822dc48e95f4
Size

38KB
Sample

221203-xqk32sfh64
MD5

c76420308838cf77f7ac186086364975
SHA1

625aaab754ade8912fa2c405bd78969ff35acc5a
SHA256

9faf59729463be0b32c07937d0c6ec9d2d5f1179403f64b47404822dc48e95f4
SHA512

35e18c9126a6845240d52855b356d7ed94f828498bfc235136ca19edafb0bd02de936f2e53e1227091b52654a4ba9a1e25ac5685db8057ee0f02836d1dcfbe31
SSDEEP

768:Fy5Xq9kLS30sfDzUnop15nacjQzTGf1x:Fyc9s9YzwopZQy

Score

8^/10

persistence upx

Malware Config

Targets

- Target
  
  9faf59729463be0b32c07937d0c6ec9d2d5f1179403f64b47404822dc48e95f4
- Size
  
  38KB
- MD5
  
  c76420308838cf77f7ac186086364975
- SHA1
  
  625aaab754ade8912fa2c405bd78969ff35acc5a
- SHA256
  
  9faf59729463be0b32c07937d0c6ec9d2d5f1179403f64b47404822dc48e95f4
- SHA512
  
  35e18c9126a6845240d52855b356d7ed94f828498bfc235136ca19edafb0bd02de936f2e53e1227091b52654a4ba9a1e25ac5685db8057ee0f02836d1dcfbe31
- SSDEEP
  
  768:Fy5Xq9kLS30sfDzUnop15nacjQzTGf1x:Fyc9s9YzwopZQy
Score

8^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2