cd4f35f8a659fbc19a92c0493696f245633814bf40eff4049b4885509a8e84e1 | Triage

Sharing

General

Target

cd4f35f8a659fbc19a92c0493696f245633814bf40eff4049b4885509a8e84e1
Size

1.4MB
Sample

221002-3hvv6sggak
MD5

4c221b164dce6a0bf5f363ec58eadad0
SHA1

b262dc46f23151c6d96c72f8f9eca618510f69bb
SHA256

cd4f35f8a659fbc19a92c0493696f245633814bf40eff4049b4885509a8e84e1
SHA512

56683daf26fc6e9aed6444bb3f87ea35a3f509b05fd0329d82deee086ee371bd6ec8975d587e6810b6bae55d2cecfa216bfde48a5f04024d865748d187a95207
SSDEEP

24576:ZNmF/mnBoDM5f7F2FdcclPqVX7TwBTGQOD6N+FrFcWwWdXwMKfFtzpCGV9o984wq:ZYVZo5TcFB1osWwWdw/v19hKL5ic/RT

Score

8^/10

discovery exploit

Malware Config

Targets

- Target
  
  cd4f35f8a659fbc19a92c0493696f245633814bf40eff4049b4885509a8e84e1
- Size
  
  1.4MB
- MD5
  
  4c221b164dce6a0bf5f363ec58eadad0
- SHA1
  
  b262dc46f23151c6d96c72f8f9eca618510f69bb
- SHA256
  
  cd4f35f8a659fbc19a92c0493696f245633814bf40eff4049b4885509a8e84e1
- SHA512
  
  56683daf26fc6e9aed6444bb3f87ea35a3f509b05fd0329d82deee086ee371bd6ec8975d587e6810b6bae55d2cecfa216bfde48a5f04024d865748d187a95207
- SSDEEP
  
  24576:ZNmF/mnBoDM5f7F2FdcclPqVX7TwBTGQOD6N+FrFcWwWdXwMKfFtzpCGV9o984wq:ZYVZo5TcFB1osWwWdw/v19hKL5ic/RT
Score

8^/10

discovery exploit
- Executes dropped EXE
- Possible privilege escalation attempt
  exploit
- Loads dropped DLL
- Modifies file permissions
  discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Permissions Modification

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryexploit

behavioral2

discoveryexploit