General
-
Target
fa54713956064784acfb0ed3178404f0N
-
Size
1.1MB
-
Sample
240825-29xneasfnk
-
MD5
fa54713956064784acfb0ed3178404f0
-
SHA1
c364caec33d51cd3c34fbe6116211d45f295dd0f
-
SHA256
995db06fa69a30a439ebaf5d715016a0266bc53bd3a0822d41ff62ee390d31ce
-
SHA512
6d00cf8fd59efdcfc659e995ba2c8b05e0cc6bbcf1187bd1a5b18b128fcbf9fb99de9fbc3296209fd8f7c1e26c831fd04dfa66b4e140690a1fce05972b373393
-
SSDEEP
24576:v6Zv2ivhBVnFys7xP86LXtqWJ/ej0umQf8/UW9wRWD7Ag0K:vE2ivhQs7dLX/JkZ8/UW6WD790K
Malware Config
Targets
-
-
Target
fa54713956064784acfb0ed3178404f0N
-
Size
1.1MB
-
MD5
fa54713956064784acfb0ed3178404f0
-
SHA1
c364caec33d51cd3c34fbe6116211d45f295dd0f
-
SHA256
995db06fa69a30a439ebaf5d715016a0266bc53bd3a0822d41ff62ee390d31ce
-
SHA512
6d00cf8fd59efdcfc659e995ba2c8b05e0cc6bbcf1187bd1a5b18b128fcbf9fb99de9fbc3296209fd8f7c1e26c831fd04dfa66b4e140690a1fce05972b373393
-
SSDEEP
24576:v6Zv2ivhBVnFys7xP86LXtqWJ/ej0umQf8/UW9wRWD7Ag0K:vE2ivhQs7dLX/JkZ8/UW6WD790K
Score8/10-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Executes dropped EXE
-
Modifies system executable filetype association
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
2Active Setup
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1