81462c7a84747eaf173bdb8c5c29eefb247dcfba1c01a9cf91d1ed16410cf4e4 | Triage

Sharing

General

Target

81462c7a84747eaf173bdb8c5c29eefb247dcfba1c01a9cf91d1ed16410cf4e4
Size

1.4MB
Sample

221003-3xd6zachek
MD5

3672fbff35653d574babf14dbfa750d0
SHA1

effd9a672f81c641ba68d773e7db1589b3616c74
SHA256

81462c7a84747eaf173bdb8c5c29eefb247dcfba1c01a9cf91d1ed16410cf4e4
SHA512

04bd34040543cc1bd2aaa666c706a2ae7f05f41e7471553929419cc52c523cefbf846fb5716684aa7ac223fea8facfc9bf884ee467a1a026529cb6ded16f9b71
SSDEEP

24576:kNmF/mnBoDM5f7F2NQa1iBqeDhUywMexgR2wboeWxjO30C5VL9FvykON7gjr8uUG:kYVZo5Tc/iBhgyrb8xjXq9TO5wk3xHX+

Score

8^/10

discovery exploit

Malware Config

Targets

- Target
  
  81462c7a84747eaf173bdb8c5c29eefb247dcfba1c01a9cf91d1ed16410cf4e4
- Size
  
  1.4MB
- MD5
  
  3672fbff35653d574babf14dbfa750d0
- SHA1
  
  effd9a672f81c641ba68d773e7db1589b3616c74
- SHA256
  
  81462c7a84747eaf173bdb8c5c29eefb247dcfba1c01a9cf91d1ed16410cf4e4
- SHA512
  
  04bd34040543cc1bd2aaa666c706a2ae7f05f41e7471553929419cc52c523cefbf846fb5716684aa7ac223fea8facfc9bf884ee467a1a026529cb6ded16f9b71
- SSDEEP
  
  24576:kNmF/mnBoDM5f7F2NQa1iBqeDhUywMexgR2wboeWxjO30C5VL9FvykON7gjr8uUG:kYVZo5Tc/iBhgyrb8xjXq9TO5wk3xHX+
Score

8^/10

discovery exploit
- Executes dropped EXE
- Possible privilege escalation attempt
  exploit
- Loads dropped DLL
- Modifies file permissions
  discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Permissions Modification

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryexploit

behavioral2

discoveryexploit