89bd101b0a40ae7a19c93eb97d9aae86744e0f7a972a405fcd762d3a5c62f8f6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

89bd101b0a40ae7a19c93eb97d9aae86744e0f7a972a405fcd762d3a5c62f8f6
Size

428KB
Sample

240803-adbmhszhnh
MD5

b7bd4e0d072358f92ad0cc6f76535011
SHA1

2b3df9aa67dc256a6820e869ec2c761234fbeb97
SHA256

89bd101b0a40ae7a19c93eb97d9aae86744e0f7a972a405fcd762d3a5c62f8f6
SHA512

b065a1f4178c482b148552a5b58cfdc9de753369b9b3add41e85fa130dce1ff195135b340cf6a632629b476c50ba7dd0de3bb5d6306d1d4aa1493cd6bf872bd3
SSDEEP

3072:LmVW8iTX/3Rfl8Xq1+0cxxsWEL02fXcIp08Moe9DESZLP4OK92:SM7jJljxYTHYZM1vTxK92

Score

7^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  89bd101b0a40ae7a19c93eb97d9aae86744e0f7a972a405fcd762d3a5c62f8f6
- Size
  
  428KB
- MD5
  
  b7bd4e0d072358f92ad0cc6f76535011
- SHA1
  
  2b3df9aa67dc256a6820e869ec2c761234fbeb97
- SHA256
  
  89bd101b0a40ae7a19c93eb97d9aae86744e0f7a972a405fcd762d3a5c62f8f6
- SHA512
  
  b065a1f4178c482b148552a5b58cfdc9de753369b9b3add41e85fa130dce1ff195135b340cf6a632629b476c50ba7dd0de3bb5d6306d1d4aa1493cd6bf872bd3
- SSDEEP
  
  3072:LmVW8iTX/3Rfl8Xq1+0cxxsWEL02fXcIp08Moe9DESZLP4OK92:SM7jJljxYTHYZM1vTxK92
Score

7^/10

discovery persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2

discoverypersistenceupx