2877864d326751fbbe2b7d93e13934871977980cd3f30adc95111f498e2824c5 | Triage

Submit
Reports

Overview

overview

8

Static

static

8

2877864d32...c5.exe

windows7_x64

8

2877864d32...c5.exe

windows10-2004_x64

8

Sharing

General

Target

2877864d326751fbbe2b7d93e13934871977980cd3f30adc95111f498e2824c5
Size

46KB
Sample

220419-g5mbnacdg5
MD5

f3bbb3c3488cfcdb2e8d2ca34b4bdb85
SHA1

76de0481aa1dacde52335d253bb4ac7cc1b28dcb
SHA256

2877864d326751fbbe2b7d93e13934871977980cd3f30adc95111f498e2824c5
SHA512

d6b741d006560cd0e0dfbc3502cb13da0f333df409cc6341aab9a48bdb9a06ba19b16e784afeaa6b27ff2f55036c9e220671f7c7293838f99d4c229b11c4717f

Score

8^/10

discovery exploit upx

Static task

static1

Behavioral task

behavioral1

Sample

2877864d326751fbbe2b7d93e13934871977980cd3f30adc95111f498e2824c5.exe

Resource

win7-20220414-en

discovery exploit

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

2877864d326751fbbe2b7d93e13934871977980cd3f30adc95111f498e2824c5.exe

Resource

win10v2004-20220414-en

discovery exploit

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  2877864d326751fbbe2b7d93e13934871977980cd3f30adc95111f498e2824c5
- Size
  
  46KB
- MD5
  
  f3bbb3c3488cfcdb2e8d2ca34b4bdb85
- SHA1
  
  76de0481aa1dacde52335d253bb4ac7cc1b28dcb
- SHA256
  
  2877864d326751fbbe2b7d93e13934871977980cd3f30adc95111f498e2824c5
- SHA512
  
  d6b741d006560cd0e0dfbc3502cb13da0f333df409cc6341aab9a48bdb9a06ba19b16e784afeaa6b27ff2f55036c9e220671f7c7293838f99d4c229b11c4717f
Score

8^/10

discovery exploit
- Possible privilege escalation attempt
  exploit
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Modifies file permissions
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Permissions Modification

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryexploit

behavioral2

discoveryexploit

© 2018-2024

Terms | Privacy