7150b18edd48917f35a4f2a8176f6adc382ec19ec14f89d86a07759965ebb7f1 | Triage

Sharing

General

Target

96f00f7bc2bddb1f08983242dab8b0d1
Size

51KB
Sample

240212-mh4v3sba6y
MD5

96f00f7bc2bddb1f08983242dab8b0d1
SHA1

b7c2c2328cb745137cf717524a41c717cc7b180a
SHA256

7150b18edd48917f35a4f2a8176f6adc382ec19ec14f89d86a07759965ebb7f1
SHA512

e9d5d8df7f6bb1befc5be0bd10188ae7844f71f393d947a6d022b4dc4a87ccef092dc2c66160cb88a65ce6353723bc91ca722c4c0d49aaa69bb7f56cd15e95a0
SSDEEP

1536:Nj/kKcWVvBOeDkuubz2L2yCgj1NxQFloO4P:ZsKccnkuOaqexNxQUO4P

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  96f00f7bc2bddb1f08983242dab8b0d1
- Size
  
  51KB
- MD5
  
  96f00f7bc2bddb1f08983242dab8b0d1
- SHA1
  
  b7c2c2328cb745137cf717524a41c717cc7b180a
- SHA256
  
  7150b18edd48917f35a4f2a8176f6adc382ec19ec14f89d86a07759965ebb7f1
- SHA512
  
  e9d5d8df7f6bb1befc5be0bd10188ae7844f71f393d947a6d022b4dc4a87ccef092dc2c66160cb88a65ce6353723bc91ca722c4c0d49aaa69bb7f56cd15e95a0
- SSDEEP
  
  1536:Nj/kKcWVvBOeDkuubz2L2yCgj1NxQFloO4P:ZsKccnkuOaqexNxQUO4P
Score

7^/10

persistence upx
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2