General
-
Target
6741b4288830664270f19c6988dfcb50bff36fdd67f709204b44d006a8dd9cd6N
-
Size
361KB
-
Sample
240921-dr36gasejb
-
MD5
e78fdd9ff9c9adc214fe0a1116793ec0
-
SHA1
ac005ce381064799a8e22c5f7be0bbe1fcf74b9f
-
SHA256
6741b4288830664270f19c6988dfcb50bff36fdd67f709204b44d006a8dd9cd6
-
SHA512
75fec5288d20e1517fdd9648fa47fcd27c138f0060dc5faef865035c230eb5798eaa803a945011103a2ea9f545a5da3488e1c8fd1cf8b5ddb61f15420bedf9e9
-
SSDEEP
6144:Diu0srKxP6nVMg1FENy/V/5c6thb+lazG8I:D50srcyLjN/5c6thb+lazGZ
Malware Config
Targets
-
-
Target
6741b4288830664270f19c6988dfcb50bff36fdd67f709204b44d006a8dd9cd6N
-
Size
361KB
-
MD5
e78fdd9ff9c9adc214fe0a1116793ec0
-
SHA1
ac005ce381064799a8e22c5f7be0bbe1fcf74b9f
-
SHA256
6741b4288830664270f19c6988dfcb50bff36fdd67f709204b44d006a8dd9cd6
-
SHA512
75fec5288d20e1517fdd9648fa47fcd27c138f0060dc5faef865035c230eb5798eaa803a945011103a2ea9f545a5da3488e1c8fd1cf8b5ddb61f15420bedf9e9
-
SSDEEP
6144:Diu0srKxP6nVMg1FENy/V/5c6thb+lazG8I:D50srcyLjN/5c6thb+lazGZ
Score10/10-
Modifies firewall policy service
-
Adds policy Run key to start application
-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Active Setup
1Registry Run Keys / Startup Folder
2Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
3Active Setup
1Registry Run Keys / Startup Folder
2Create or Modify System Process
1Windows Service
1