General
-
Target
876a305eae535961eb9138e003810cea
-
Size
6KB
-
Sample
240201-vh3xsacegm
-
MD5
876a305eae535961eb9138e003810cea
-
SHA1
7548d6485a1420b1315623c1c1d133936249b7a4
-
SHA256
b2c0f28fa0cbc0cabc0d7789bc53b36f753315758d358eb39585f1f983ae8e8e
-
SHA512
80190daaaeb0ecb2fa3568be15b5e971874f667ae259c8c06140bab729d243a2e31c6e887a7d13bef7c70840869fd6b123cd37da6b68a96aa647085a11eded5e
-
SSDEEP
96:ie+bbHPT40jFQIWV8flNfT6J13UH5OmBRfb2KjM4E5F8+LGHJbIaGMrm1YPkp:iJvT9+elZT66Tj71EI+L6JbIaGMpkp
Malware Config
Targets
-
-
Target
876a305eae535961eb9138e003810cea
-
Size
6KB
-
MD5
876a305eae535961eb9138e003810cea
-
SHA1
7548d6485a1420b1315623c1c1d133936249b7a4
-
SHA256
b2c0f28fa0cbc0cabc0d7789bc53b36f753315758d358eb39585f1f983ae8e8e
-
SHA512
80190daaaeb0ecb2fa3568be15b5e971874f667ae259c8c06140bab729d243a2e31c6e887a7d13bef7c70840869fd6b123cd37da6b68a96aa647085a11eded5e
-
SSDEEP
96:ie+bbHPT40jFQIWV8flNfT6J13UH5OmBRfb2KjM4E5F8+LGHJbIaGMrm1YPkp:iJvT9+elZT66Tj71EI+L6JbIaGMpkp
Score8/10-
Disables Task Manager via registry modification
-
Modifies Windows Firewall
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1