60dc997bc5f8d6753890ee3c472e5badc5cecab53d82616ab8e93bab69c0a57e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d953c63ace797cb40da643969485da0c
Size

1003KB
Sample

231222-ssdpjabed5
MD5

d953c63ace797cb40da643969485da0c
SHA1

a88fb3b75b47ae7adb16766eccf1e6140c8bb605
SHA256

60dc997bc5f8d6753890ee3c472e5badc5cecab53d82616ab8e93bab69c0a57e
SHA512

b41e004fda07c0967039ad791b92b2d2a2cab93b3fc6a997c96da87bc8346aa2cc0dd81f5411bb0bcb2dbef4f62f481a7982b8a3bed054c99c08ea52ab555f7b
SSDEEP

24576:dLTVf5G7VfnL6osZWj0AGQuC/DIbYvrrN+d8wrvAta4eCT:dnVf5G7V/L+iRGMSYv/od8wTAta4NT

Score

7^/10

upx

Malware Config

Targets

- Target
  
  d953c63ace797cb40da643969485da0c
- Size
  
  1003KB
- MD5
  
  d953c63ace797cb40da643969485da0c
- SHA1
  
  a88fb3b75b47ae7adb16766eccf1e6140c8bb605
- SHA256
  
  60dc997bc5f8d6753890ee3c472e5badc5cecab53d82616ab8e93bab69c0a57e
- SHA512
  
  b41e004fda07c0967039ad791b92b2d2a2cab93b3fc6a997c96da87bc8346aa2cc0dd81f5411bb0bcb2dbef4f62f481a7982b8a3bed054c99c08ea52ab555f7b
- SSDEEP
  
  24576:dLTVf5G7VfnL6osZWj0AGQuC/DIbYvrrN+d8wrvAta4eCT:dnVf5G7V/L+iRGMSYv/od8wTAta4NT
Score

7^/10

upx
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2