ca85e6d569d6cd3667b38780af6d2d242fdbeddfd3bb4a5a4b4bc4143e2bb422 | Triage

Sharing

General

Target

0afed32562451ce1b51d4c6ba1a0defc
Size

187KB
Sample

231224-wvmxrsgcd6
MD5

0afed32562451ce1b51d4c6ba1a0defc
SHA1

8d7b4a1009e9a4f027b09fca6a76a2e4e29d0942
SHA256

ca85e6d569d6cd3667b38780af6d2d242fdbeddfd3bb4a5a4b4bc4143e2bb422
SHA512

6834a24459a4cc0465c0f5f0a9672896321c8fde61619755ea817de2043c2236fd28754bd087cb358c6a3add2210529d16b1e34beb61c9ae528cd8ebb5be3313
SSDEEP

3072:/uNKA2bXpP+KBvgsW6DajpeqTCNoL2Kc1PDG1k+c4aYHwyJd63h5jjZlU2ut:Eeb5P51ajpecD2Pr+k+rjH7dUh5jjZl

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  0afed32562451ce1b51d4c6ba1a0defc
- Size
  
  187KB
- MD5
  
  0afed32562451ce1b51d4c6ba1a0defc
- SHA1
  
  8d7b4a1009e9a4f027b09fca6a76a2e4e29d0942
- SHA256
  
  ca85e6d569d6cd3667b38780af6d2d242fdbeddfd3bb4a5a4b4bc4143e2bb422
- SHA512
  
  6834a24459a4cc0465c0f5f0a9672896321c8fde61619755ea817de2043c2236fd28754bd087cb358c6a3add2210529d16b1e34beb61c9ae528cd8ebb5be3313
- SSDEEP
  
  3072:/uNKA2bXpP+KBvgsW6DajpeqTCNoL2Kc1PDG1k+c4aYHwyJd63h5jjZlU2ut:Eeb5P51ajpecD2Pr+k+rjH7dUh5jjZl
Score

7^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2