Overview

overview

8

Static

static

896b454fc5...2b.exe

windows7-x64

7

896b454fc5...2b.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    896b454fc54d37f31775645ec9707e04c6996c13f0f303584ad47b9a26118a2b

  • Size

    26KB

  • Sample

    221002-2ych4aeda3

  • MD5

    05b52fcc52f9ed9a6075ca818061b520

  • SHA1

    e6da7ea0e2d2bf1a6d204a46c2422620aca07e26

  • SHA256

    896b454fc54d37f31775645ec9707e04c6996c13f0f303584ad47b9a26118a2b

  • SHA512

    8fdbca0f8bb7d128f96506f5474487960ff0e8c7f4662f9be3c275159efc44f3be833e391ba78b08af9579c0e6bad5ec98d25fa8ec73a64ae682c587bc670fb7

  • SSDEEP

    768:fhLH26CG8gTC9F0w6dGPDISFPDlzr7E3ByKxKzJRl+JTc:VRFvTCEwmSNDO7tJY

Score
8/10
discoveryexploit

Malware Config

Targets

    • Target

      896b454fc54d37f31775645ec9707e04c6996c13f0f303584ad47b9a26118a2b

    • Size

      26KB

    • MD5

      05b52fcc52f9ed9a6075ca818061b520

    • SHA1

      e6da7ea0e2d2bf1a6d204a46c2422620aca07e26

    • SHA256

      896b454fc54d37f31775645ec9707e04c6996c13f0f303584ad47b9a26118a2b

    • SHA512

      8fdbca0f8bb7d128f96506f5474487960ff0e8c7f4662f9be3c275159efc44f3be833e391ba78b08af9579c0e6bad5ec98d25fa8ec73a64ae682c587bc670fb7

    • SSDEEP

      768:fhLH26CG8gTC9F0w6dGPDISFPDlzr7E3ByKxKzJRl+JTc:VRFvTCEwmSNDO7tJY

    Score
    8/10
    discoveryexploit

    • Possible privilege escalation attempt

      exploit

    • Deletes itself

    • Modifies file permissions

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Permissions Modification

1
T1222

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks