f0a3e3ecee49f6bef3964f9b564555a9ada9a2844a6cd7ef4308f1abf019cf17 | Triage

Sharing

General

Target

73d84e54e9aa132241688a8d7ac918a8
Size

40KB
Sample

240125-f3wa4shehq
MD5

73d84e54e9aa132241688a8d7ac918a8
SHA1

00bf7f9e9f6cfaa350d0251173052c97100e27f3
SHA256

f0a3e3ecee49f6bef3964f9b564555a9ada9a2844a6cd7ef4308f1abf019cf17
SHA512

9a2fcf8b85569a08b63d2c119a3dce997dc0752ccd0e00ee780b4b4b21000617e58bdd436bb6712a7e834cefab59e49fa56f706cb9a5be4e0bb77be10c5de7bd
SSDEEP

768:PfPcH8/ejLUhdD1hvLX61e7qeiSBherfcesr2qzuxw4OYN22HXESHyq+ILrv:3Piym0DP/7qex0jcR26uxw4OYN22HXEo

Score

10^/10

evasion upx

Malware Config

Targets

- Target
  
  73d84e54e9aa132241688a8d7ac918a8
- Size
  
  40KB
- MD5
  
  73d84e54e9aa132241688a8d7ac918a8
- SHA1
  
  00bf7f9e9f6cfaa350d0251173052c97100e27f3
- SHA256
  
  f0a3e3ecee49f6bef3964f9b564555a9ada9a2844a6cd7ef4308f1abf019cf17
- SHA512
  
  9a2fcf8b85569a08b63d2c119a3dce997dc0752ccd0e00ee780b4b4b21000617e58bdd436bb6712a7e834cefab59e49fa56f706cb9a5be4e0bb77be10c5de7bd
- SSDEEP
  
  768:PfPcH8/ejLUhdD1hvLX61e7qeiSBherfcesr2qzuxw4OYN22HXESHyq+ILrv:3Piym0DP/7qex0jcR26uxw4OYN22HXEo
Score

10^/10

evasion upx
- Modifies firewall policy service
  evasion
- Deletes itself
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2