f024466f53c915499bfb5f3fbb8cb8669ad4d1d09c1974303ed0265f625247cf | Triage

Submit
Reports

Overview

overview

Static

static

f024466f53...cf.exe

windows7-x64

3

f024466f53...cf.exe

windows10-2004-x64

Sharing

General

Target

f024466f53c915499bfb5f3fbb8cb8669ad4d1d09c1974303ed0265f625247cf
Size

656KB
Sample

220919-n526fafgb6
MD5

c63cd2dac85d84eeb1cd377a1c893a54
SHA1

192c5010ce1e6fde1dbc624bac3e76909934cfd8
SHA256

f024466f53c915499bfb5f3fbb8cb8669ad4d1d09c1974303ed0265f625247cf
SHA512

cd01a04061f36f013f6d5d5acfc9e18261a1ac4b9d193f314c87e3d42c626674013bcd2dab72b39f6de73bc4cf96513c81beae17f557c552726a1858aae38a2b
SSDEEP

12288:eklCt4P6+oXvSMn5e2UzenFiyx/TfqjShxUXrVPYgqGKjzqXVSdvnlyxsG:/l0qt7oFr1C2grqGKfqXkyxsG

Score

10^/10

discovery evasion exploit persistence trojan

Static task

static1

Behavioral task

behavioral1

Sample

f024466f53c915499bfb5f3fbb8cb8669ad4d1d09c1974303ed0265f625247cf.exe

Resource

win7-20220901-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

f024466f53c915499bfb5f3fbb8cb8669ad4d1d09c1974303ed0265f625247cf.exe

Resource

win10v2004-20220812-en

discovery evasion exploit persistence trojan

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  f024466f53c915499bfb5f3fbb8cb8669ad4d1d09c1974303ed0265f625247cf
- Size
  
  656KB
- MD5
  
  c63cd2dac85d84eeb1cd377a1c893a54
- SHA1
  
  192c5010ce1e6fde1dbc624bac3e76909934cfd8
- SHA256
  
  f024466f53c915499bfb5f3fbb8cb8669ad4d1d09c1974303ed0265f625247cf
- SHA512
  
  cd01a04061f36f013f6d5d5acfc9e18261a1ac4b9d193f314c87e3d42c626674013bcd2dab72b39f6de73bc4cf96513c81beae17f557c552726a1858aae38a2b
- SSDEEP
  
  12288:eklCt4P6+oXvSMn5e2UzenFiyx/TfqjShxUXrVPYgqGKjzqXVSdvnlyxsG:/l0qt7oFr1C2grqGKfqXkyxsG
Score

10^/10

discovery evasion exploit persistence trojan
- Windows security bypass
  evasion trojan
- Executes dropped EXE
- Possible privilege escalation attempt
  exploit
- Modifies file permissions
  discovery
- Windows security modification
  evasion trojan
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

File Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasionexploitpersistencetrojan

© 2018-2024

Terms | Privacy