5b648e0da28f91d364f2e5202f231ae11203eeb04e4ed3e42138871923150ede | Triage

Sharing

General

Target

5b648e0da28f91d364f2e5202f231ae11203eeb04e4ed3e42138871923150ede
Size

62KB
Sample

240520-2qg4lsag7t
MD5

204aa32f7160d37b2ebc2939484fb259
SHA1

740b995e0ed893d55b4a921e08d5ac6f3abca356
SHA256

5b648e0da28f91d364f2e5202f231ae11203eeb04e4ed3e42138871923150ede
SHA512

717fba346f8eb0833bd1e7a9ca083189eab2dcc5a75dd5d7eba07430a2751c330888912079e64b8cba7bebf598bc82172ed3df26e8fba990f89c089f710e1161
SSDEEP

1536:y4QQ6NSyM61l19piO+LV8YEoI/EU9RUe4mzVsbZ:y4X6NSyfnpijeYEoIcq4eVsbZ

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  5b648e0da28f91d364f2e5202f231ae11203eeb04e4ed3e42138871923150ede
- Size
  
  62KB
- MD5
  
  204aa32f7160d37b2ebc2939484fb259
- SHA1
  
  740b995e0ed893d55b4a921e08d5ac6f3abca356
- SHA256
  
  5b648e0da28f91d364f2e5202f231ae11203eeb04e4ed3e42138871923150ede
- SHA512
  
  717fba346f8eb0833bd1e7a9ca083189eab2dcc5a75dd5d7eba07430a2751c330888912079e64b8cba7bebf598bc82172ed3df26e8fba990f89c089f710e1161
- SSDEEP
  
  1536:y4QQ6NSyM61l19piO+LV8YEoI/EU9RUe4mzVsbZ:y4X6NSyfnpijeYEoIcq4eVsbZ
Score

7^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2