f3e65b613ad18cea4e3a769c7a69c85bc2c270d357a13fb5e68112f115649828 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f3e65b613ad18cea4e3a769c7a69c85bc2c270d357a13fb5e68112f115649828
Size

425KB
Sample

221205-gjs73sbc79
MD5

960077584a9a28a30aa7852377e90823
SHA1

c4660e6f8fc68eb4adf0c426b944e10e5a6a96b2
SHA256

f3e65b613ad18cea4e3a769c7a69c85bc2c270d357a13fb5e68112f115649828
SHA512

3b1188d1c47908e5734bc277cf6aad03d8f9b80abdbc8290574f450e2ecacbb9bb8e974c87862a19b75aa9a255f72b84dd3ba3821d84aee695517533ccd07b12
SSDEEP

12288:AvksbzLf6N9/L7pGbk80/8LOdJFWzHdZDQIB+7OgWBx:AcIDm7Ybk80IKKHdZMOgUx

Score

9^/10

evasion upx

Malware Config

Targets

- Target
  
  f3e65b613ad18cea4e3a769c7a69c85bc2c270d357a13fb5e68112f115649828
- Size
  
  425KB
- MD5
  
  960077584a9a28a30aa7852377e90823
- SHA1
  
  c4660e6f8fc68eb4adf0c426b944e10e5a6a96b2
- SHA256
  
  f3e65b613ad18cea4e3a769c7a69c85bc2c270d357a13fb5e68112f115649828
- SHA512
  
  3b1188d1c47908e5734bc277cf6aad03d8f9b80abdbc8290574f450e2ecacbb9bb8e974c87862a19b75aa9a255f72b84dd3ba3821d84aee695517533ccd07b12
- SSDEEP
  
  12288:AvksbzLf6N9/L7pGbk80/8LOdJFWzHdZDQIB+7OgWBx:AcIDm7Ybk80IKKHdZMOgUx
Score

9^/10

evasion upx
- Checks for common network interception software
  Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
  evasion
- Enumerates VirtualBox registry keys
  evasion
- Drops file in Drivers directory
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

Software Discovery

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2