82a7abb18c51b378f4ee3430fbd6e6089c07ffd56baf91c70a541e535118c13f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3b53084d9d3fc953c6fe7a57c486b831
Size

17KB
Sample

231231-3dsv1sfhgm
MD5

3b53084d9d3fc953c6fe7a57c486b831
SHA1

0d142b78d15ede499f907d11aac057728af65695
SHA256

82a7abb18c51b378f4ee3430fbd6e6089c07ffd56baf91c70a541e535118c13f
SHA512

a4b4a18d033cc596e761ca7547731358b28ac2f3a7cde1d1d2b3cad3a20914f5e91636d5f80583eb21f0b75ea35c25b28ef4145f9d8400a6f8475f39b7a9ce07
SSDEEP

384:tgnPggJt1E9BrQzuTmBlHnODMycXtZq6u0UaEr6dfmn3R:tgnP83r/TmXHO0XtAUfW

Score

10^/10

persistence upx

Malware Config

Targets

- Target
  
  3b53084d9d3fc953c6fe7a57c486b831
- Size
  
  17KB
- MD5
  
  3b53084d9d3fc953c6fe7a57c486b831
- SHA1
  
  0d142b78d15ede499f907d11aac057728af65695
- SHA256
  
  82a7abb18c51b378f4ee3430fbd6e6089c07ffd56baf91c70a541e535118c13f
- SHA512
  
  a4b4a18d033cc596e761ca7547731358b28ac2f3a7cde1d1d2b3cad3a20914f5e91636d5f80583eb21f0b75ea35c25b28ef4145f9d8400a6f8475f39b7a9ce07
- SSDEEP
  
  384:tgnPggJt1E9BrQzuTmBlHnODMycXtZq6u0UaEr6dfmn3R:tgnP83r/TmXHO0XtAUfW
Score

10^/10

persistence upx
- Modifies WinLogon for persistence
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2