eb0a08c9d45e590024b51ad3942477938544d535b4ac7d1430828d7cee4c5a45 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0b235ccb9c75fa0ee2b3a1e3808d4d31
Size

41KB
Sample

231225-g3k1taeda6
MD5

0b235ccb9c75fa0ee2b3a1e3808d4d31
SHA1

bf69d8a887a0392d551bbdedae20faf5cde4d6b1
SHA256

eb0a08c9d45e590024b51ad3942477938544d535b4ac7d1430828d7cee4c5a45
SHA512

aa98c6104523a45554892958ec587d7c1fad196c7665be18a8d98f593334478da4b0f372d3c61032a7a5e23d2c6d47c345d714f4127edf43a278410a5145e6ab
SSDEEP

768:0ffCE7bCoUTdlucHybIbFhEqc5iMmPaNQfo/94HKq:XrCCc52PaSzK

Score

8^/10

persistence upx

Malware Config

Targets

- Target
  
  0b235ccb9c75fa0ee2b3a1e3808d4d31
- Size
  
  41KB
- MD5
  
  0b235ccb9c75fa0ee2b3a1e3808d4d31
- SHA1
  
  bf69d8a887a0392d551bbdedae20faf5cde4d6b1
- SHA256
  
  eb0a08c9d45e590024b51ad3942477938544d535b4ac7d1430828d7cee4c5a45
- SHA512
  
  aa98c6104523a45554892958ec587d7c1fad196c7665be18a8d98f593334478da4b0f372d3c61032a7a5e23d2c6d47c345d714f4127edf43a278410a5145e6ab
- SSDEEP
  
  768:0ffCE7bCoUTdlucHybIbFhEqc5iMmPaNQfo/94HKq:XrCCc52PaSzK
Score

8^/10

persistence upx
- Sets DLL path for service in the registry
  persistence
- Deletes itself
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2