b6840e87d0f1f5c6c7a20bdbfa6f6fd014332c949964431b7ad362f1e2f8520b | Triage

Sharing

General

Target

04ee233d2b8cd5113144abdc537ebc7c
Size

152KB
Sample

231229-1sxfmscbf6
MD5

04ee233d2b8cd5113144abdc537ebc7c
SHA1

17cdff63e392e2a0acf2931cdaa0cb581a4321e5
SHA256

b6840e87d0f1f5c6c7a20bdbfa6f6fd014332c949964431b7ad362f1e2f8520b
SHA512

5562896d7ba3a522c1420ec7395225221c7c5e23913ada726a152972bc2ff3892916cf81756d944e7e404491b575c3742a08f855b3fb294eb5d8dc69f244b5af
SSDEEP

3072:7wa5h34RXPlxHM/SkzioSRxhEqVJApCzdVOdesl9thm:kwho1HM/OFeqC4kdesF0

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  04ee233d2b8cd5113144abdc537ebc7c
- Size
  
  152KB
- MD5
  
  04ee233d2b8cd5113144abdc537ebc7c
- SHA1
  
  17cdff63e392e2a0acf2931cdaa0cb581a4321e5
- SHA256
  
  b6840e87d0f1f5c6c7a20bdbfa6f6fd014332c949964431b7ad362f1e2f8520b
- SHA512
  
  5562896d7ba3a522c1420ec7395225221c7c5e23913ada726a152972bc2ff3892916cf81756d944e7e404491b575c3742a08f855b3fb294eb5d8dc69f244b5af
- SSDEEP
  
  3072:7wa5h34RXPlxHM/SkzioSRxhEqVJApCzdVOdesl9thm:kwho1HM/OFeqC4kdesF0
Score

7^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Checks for any installed AV software in registry
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

Software Discovery

Security Software Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2