c46f2e7373e82a057ab57f2b387fd841b2536d9930e51c47f3c47292d846acf0 | Triage

Sharing

General

Target

c46f2e7373e82a057ab57f2b387fd841b2536d9930e51c47f3c47292d846acf0
Size

294KB
Sample

221204-lwemnsgg22
MD5

2a69bd4eef86e292726b2492e1c545eb
SHA1

0c6614523cd31debdedb943d0455c98abaf8877f
SHA256

c46f2e7373e82a057ab57f2b387fd841b2536d9930e51c47f3c47292d846acf0
SHA512

f6b3f0e12134492f774ec6faefe550aedceb33e5e6ebba70cf7388550e23ff796d874497b7b47d43b87bc368cc6902f60849f002734f127793f7595af8969af2
SSDEEP

3072:hW4xBu3R6bmAdsVbnIGZ9JiFvPBtDh0oj6LHKovCbRzCakxyzyEhgt6ioutaTYf:gIBu3R6bmAeIVRtl0IQCUhxyxI6ioSz

Score

8^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  c46f2e7373e82a057ab57f2b387fd841b2536d9930e51c47f3c47292d846acf0
- Size
  
  294KB
- MD5
  
  2a69bd4eef86e292726b2492e1c545eb
- SHA1
  
  0c6614523cd31debdedb943d0455c98abaf8877f
- SHA256
  
  c46f2e7373e82a057ab57f2b387fd841b2536d9930e51c47f3c47292d846acf0
- SHA512
  
  f6b3f0e12134492f774ec6faefe550aedceb33e5e6ebba70cf7388550e23ff796d874497b7b47d43b87bc368cc6902f60849f002734f127793f7595af8969af2
- SSDEEP
  
  3072:hW4xBu3R6bmAdsVbnIGZ9JiFvPBtDh0oj6LHKovCbRzCakxyzyEhgt6ioutaTYf:gIBu3R6bmAeIVRtl0IQCUhxyxI6ioSz
Score

8^/10

discovery persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2

discoverypersistenceupx