0ce7b7013b8955b778d459028e96207910c019a635f0b98575276704223e6e58 | Triage

Sharing

General

Target

0ce7b7013b8955b778d459028e96207910c019a635f0b98575276704223e6e58
Size

277KB
Sample

240223-s7w5escf36
MD5

12b4be336b435bac3a6cfaf56af076fc
SHA1

7231dc4a2d333706bc9104f5b2d153a8129df856
SHA256

0ce7b7013b8955b778d459028e96207910c019a635f0b98575276704223e6e58
SHA512

c696d78e1fe970ecaba231144077dd40260f1b76647863f41cb1c4ae280c950ee519c9f838dc0a48abd5788d842ff7117a9f84509e98b7d098769ae5e3d9259b
SSDEEP

6144:oxAwl/DRfkTC3dM7B+mCGBV+UdvrEFp7hKC2:oxAwlbRfky6B+mCGBjvrEH752

Score

8^/10

persistence upx

Malware Config

Targets

- Target
  
  0ce7b7013b8955b778d459028e96207910c019a635f0b98575276704223e6e58
- Size
  
  277KB
- MD5
  
  12b4be336b435bac3a6cfaf56af076fc
- SHA1
  
  7231dc4a2d333706bc9104f5b2d153a8129df856
- SHA256
  
  0ce7b7013b8955b778d459028e96207910c019a635f0b98575276704223e6e58
- SHA512
  
  c696d78e1fe970ecaba231144077dd40260f1b76647863f41cb1c4ae280c950ee519c9f838dc0a48abd5788d842ff7117a9f84509e98b7d098769ae5e3d9259b
- SSDEEP
  
  6144:oxAwl/DRfkTC3dM7B+mCGBV+UdvrEFp7hKC2:oxAwlbRfky6B+mCGBjvrEH752
Score

8^/10

persistence upx
- Modifies AppInit DLL entries
  persistence
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2