bc8d9f4b54e3dcb9e6b7895a520ae03c0b4fd481ebee144f9376d80a510d0672 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc8d9f4b54e3dcb9e6b7895a520ae03c0b4fd481ebee144f9376d80a510d0672N
Size

100KB
Sample

241004-f8fgva1cqd
MD5

9df652d8e3cce5af7aea424eb7681a80
SHA1

aef0aa52771a342cc6a6ca6d54f8364be49d1fa8
SHA256

bc8d9f4b54e3dcb9e6b7895a520ae03c0b4fd481ebee144f9376d80a510d0672
SHA512

e457cdd5f0de939cf1224f02e420153163f0f2423d413be7585c7d80eb4bbb6b9b3c89fb73d8005b5212af5f95f0db09f75887c6bf17ce16280207a259e31709
SSDEEP

384:Vt5rXsz+w7FsvoohQ/t5rIZ3uJGYSa/VSeL:dROFsAohQDU0/

Score

7^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  bc8d9f4b54e3dcb9e6b7895a520ae03c0b4fd481ebee144f9376d80a510d0672N
- Size
  
  100KB
- MD5
  
  9df652d8e3cce5af7aea424eb7681a80
- SHA1
  
  aef0aa52771a342cc6a6ca6d54f8364be49d1fa8
- SHA256
  
  bc8d9f4b54e3dcb9e6b7895a520ae03c0b4fd481ebee144f9376d80a510d0672
- SHA512
  
  e457cdd5f0de939cf1224f02e420153163f0f2423d413be7585c7d80eb4bbb6b9b3c89fb73d8005b5212af5f95f0db09f75887c6bf17ce16280207a259e31709
- SSDEEP
  
  384:Vt5rXsz+w7FsvoohQ/t5rIZ3uJGYSa/VSeL:dROFsAohQDU0/
Score

7^/10

discovery persistence upx
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2

discoverypersistenceupx