1888419670009bf77a5cc68667322b922c2ee705e91b3a8104ff0200f7a9faae | Triage

Sharing

General

Target

1888419670009bf77a5cc68667322b922c2ee705e91b3a8104ff0200f7a9faae
Size

826KB
Sample

221205-s6q7sadc77
MD5

180f5819bf34cf42b73ad9fba0db9f11
SHA1

3257a1afc5e1e5eb8599a1192de1b3f73fdef56b
SHA256

1888419670009bf77a5cc68667322b922c2ee705e91b3a8104ff0200f7a9faae
SHA512

641684ebebf576f49d4e654ec9e70e1cc65102a234e630f2dac918aceadc474934c65dcedc5aa80a2113807abd96a71b6e00934e5997a092f60f11a67936d290
SSDEEP

24576:TIX3H/80hDRIw8WVlGe50TBQJiV1UTp6aF:Tw80hDmw8WPMVgiE8

Score

8^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  1888419670009bf77a5cc68667322b922c2ee705e91b3a8104ff0200f7a9faae
- Size
  
  826KB
- MD5
  
  180f5819bf34cf42b73ad9fba0db9f11
- SHA1
  
  3257a1afc5e1e5eb8599a1192de1b3f73fdef56b
- SHA256
  
  1888419670009bf77a5cc68667322b922c2ee705e91b3a8104ff0200f7a9faae
- SHA512
  
  641684ebebf576f49d4e654ec9e70e1cc65102a234e630f2dac918aceadc474934c65dcedc5aa80a2113807abd96a71b6e00934e5997a092f60f11a67936d290
- SSDEEP
  
  24576:TIX3H/80hDRIw8WVlGe50TBQJiV1UTp6aF:Tw80hDmw8WPMVgiE8
Score

8^/10

discovery persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2