266c99d5407fe73ceba95de2a075c0cb9c99dc5cc39f5f672b79bb4a0bc314db | Triage

Submit
Reports

Overview

overview

8

Static

static

266c99d540...db.exe

windows7_x64

8

266c99d540...db.exe

windows10-2004_x64

8

Sharing

General

Target

266c99d5407fe73ceba95de2a075c0cb9c99dc5cc39f5f672b79bb4a0bc314db
Size

1.9MB
Sample

220520-3cs5dsbfan
MD5

68f740fdaa044220dccf3bbf8eb5e3a1
SHA1

2b93ae066b3d7eb344600f82deb802b00fd59c26
SHA256

266c99d5407fe73ceba95de2a075c0cb9c99dc5cc39f5f672b79bb4a0bc314db
SHA512

e43886967423ce28f7ea99d172639c12b157ef17695c633e9209ed28de19c78912e7b4e785534cce64e419f8d856c67e39d8f6cbfe7bb6dd7a6869be7e9255df

Score

8^/10

discovery exploit

Static task

static1

Behavioral task

behavioral1

Sample

266c99d5407fe73ceba95de2a075c0cb9c99dc5cc39f5f672b79bb4a0bc314db.exe

Resource

win7-20220414-en

discovery exploit

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

266c99d5407fe73ceba95de2a075c0cb9c99dc5cc39f5f672b79bb4a0bc314db.exe

Resource

win10v2004-20220414-en

discovery exploit

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  266c99d5407fe73ceba95de2a075c0cb9c99dc5cc39f5f672b79bb4a0bc314db
- Size
  
  1.9MB
- MD5
  
  68f740fdaa044220dccf3bbf8eb5e3a1
- SHA1
  
  2b93ae066b3d7eb344600f82deb802b00fd59c26
- SHA256
  
  266c99d5407fe73ceba95de2a075c0cb9c99dc5cc39f5f672b79bb4a0bc314db
- SHA512
  
  e43886967423ce28f7ea99d172639c12b157ef17695c633e9209ed28de19c78912e7b4e785534cce64e419f8d856c67e39d8f6cbfe7bb6dd7a6869be7e9255df
Score

8^/10

discovery exploit
- Contacts a large (1497) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Contacts a large (1955) amount of remote hosts
  This may indicate a network scan to discover remotely running services.
  discovery
- Executes dropped EXE
- Possible privilege escalation attempt
  exploit
- Loads dropped DLL
- Modifies file permissions
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Permissions Modification

Credential Access

Discovery

Network Service Scanning

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryexploit

behavioral2

discoveryexploit

© 2018-2024

Terms | Privacy