c61a931b9b743b4971a3a15d06dfd5402355664f7b617bba77df2399d65a4ed1 | Triage

Sharing

General

Target

678700e811d21075ca3bb51b3dd03ff7
Size

205KB
Sample

240119-nrrsjsdbap
MD5

678700e811d21075ca3bb51b3dd03ff7
SHA1

6a4b34249dc2640f8cbb0b83badb20dce1a3e3df
SHA256

c61a931b9b743b4971a3a15d06dfd5402355664f7b617bba77df2399d65a4ed1
SHA512

cc0923ce2d56f309c904fcc14139b0475f42c2b75d67b2b69c9f38f85937bc8385773977c3adc26591949fd8b2bd996dcc213280dfd38b009eb8607083798943
SSDEEP

6144:d1uOqy+3gOqjsEYSIWyGFBVHeE9XfZ3hwfXD:d1uOqy+UgtS9FVHvvZ+fXD

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  678700e811d21075ca3bb51b3dd03ff7
- Size
  
  205KB
- MD5
  
  678700e811d21075ca3bb51b3dd03ff7
- SHA1
  
  6a4b34249dc2640f8cbb0b83badb20dce1a3e3df
- SHA256
  
  c61a931b9b743b4971a3a15d06dfd5402355664f7b617bba77df2399d65a4ed1
- SHA512
  
  cc0923ce2d56f309c904fcc14139b0475f42c2b75d67b2b69c9f38f85937bc8385773977c3adc26591949fd8b2bd996dcc213280dfd38b009eb8607083798943
- SSDEEP
  
  6144:d1uOqy+3gOqjsEYSIWyGFBVHeE9XfZ3hwfXD:d1uOqy+UgtS9FVHvvZ+fXD
Score

7^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2