General
-
Target
2ce2687a9989c8747617efbd0a0152be
-
Size
116KB
-
Sample
231231-h1cgbsddbq
-
MD5
2ce2687a9989c8747617efbd0a0152be
-
SHA1
f996cc1a8bdaf5f5759a948a0c2326d6f8588b61
-
SHA256
30cb2720877f8ca7aeb8c13fc2ebcf392377f1e16c161df9055e8f823e808809
-
SHA512
edf722e730607595f2867d059db4aa22ca445c9c8edccf41f1b1f2cf27dd294915a5a3fbc3e4b4cdacca7c4983ec8ee12e015eef2b25c23616736e5db190b7e0
-
SSDEEP
3072:fG1TRtydMn84E4rmE6lBx8p6H++a3sAai2A5isknOtjsBf8sLtgDu+:fG1FVn84Vm+6ljO9sNYu+
Malware Config
Targets
-
-
Target
2ce2687a9989c8747617efbd0a0152be
-
Size
116KB
-
MD5
2ce2687a9989c8747617efbd0a0152be
-
SHA1
f996cc1a8bdaf5f5759a948a0c2326d6f8588b61
-
SHA256
30cb2720877f8ca7aeb8c13fc2ebcf392377f1e16c161df9055e8f823e808809
-
SHA512
edf722e730607595f2867d059db4aa22ca445c9c8edccf41f1b1f2cf27dd294915a5a3fbc3e4b4cdacca7c4983ec8ee12e015eef2b25c23616736e5db190b7e0
-
SSDEEP
3072:fG1TRtydMn84E4rmE6lBx8p6H++a3sAai2A5isknOtjsBf8sLtgDu+:fG1FVn84Vm+6ljO9sNYu+
Score10/10-
Modifies security service
-
Sets service image path in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Adds Run key to start application
-
Checks for any installed AV software in registry
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
2Registry Run Keys / Startup Folder
2Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
2Registry Run Keys / Startup Folder
2Create or Modify System Process
1Windows Service
1