f629ddb510640db1c45cb3c8e28e99366ace8445a03f313f79d06727021159bf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f629ddb510640db1c45cb3c8e28e99366ace8445a03f313f79d06727021159bfN
Size

264KB
Sample

241003-fyqj3awfpk
MD5

f5c6bc5f53182c8041e2e796ed492d30
SHA1

c1e09dbed2cd4e351c990ffcfb2ef25dc480d876
SHA256

f629ddb510640db1c45cb3c8e28e99366ace8445a03f313f79d06727021159bf
SHA512

b7188d063d5c5e9d7cc224c62ebd394d26037c34998fd5078f1fec64a2699401062f3c831fe3da833c1135d46314c6524dd3651a2c4348afbea789777231c16d
SSDEEP

6144:+lUjEKIhdz4Tlw0bpWtVUrTocNBGWI/3JeY7Ko8CaZ:AUYKOWTlf7rToSBI3WohaZ

Score

6^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  f629ddb510640db1c45cb3c8e28e99366ace8445a03f313f79d06727021159bfN
- Size
  
  264KB
- MD5
  
  f5c6bc5f53182c8041e2e796ed492d30
- SHA1
  
  c1e09dbed2cd4e351c990ffcfb2ef25dc480d876
- SHA256
  
  f629ddb510640db1c45cb3c8e28e99366ace8445a03f313f79d06727021159bf
- SHA512
  
  b7188d063d5c5e9d7cc224c62ebd394d26037c34998fd5078f1fec64a2699401062f3c831fe3da833c1135d46314c6524dd3651a2c4348afbea789777231c16d
- SSDEEP
  
  6144:+lUjEKIhdz4Tlw0bpWtVUrTocNBGWI/3JeY7Ko8CaZ:AUYKOWTlf7rToSBI3WohaZ
Score

6^/10

discovery persistence upx
- Modifies WinLogon
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2