Overview

overview

8

Static

static

b7967c759f...96.exe

windows7-x64

8

b7967c759f...96.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b7967c759f798ad36883d8bbaa5913e1541fe8fe86b7a43f93c38bb92b05a796

  • Size

    36KB

  • Sample

    221003-q1va5shgcl

  • MD5

    6aed9809f8dedf5a2ca4d872e432aeb0

  • SHA1

    59ef52703adfbda6a06d41ae1c739c015b5167bd

  • SHA256

    b7967c759f798ad36883d8bbaa5913e1541fe8fe86b7a43f93c38bb92b05a796

  • SHA512

    23f12f498f5b1ed8e9952c9ce837460aa01a78b7f0d6105e9597a20a73513c5e1cd2ea7860c4013b574efa0f25548c0660ca57817ae686a912097fff186d9b9d

  • SSDEEP

    768:/2EFOQ2zcv3XkXfwwrLZbDvytKB7AgzzZKfp6jt3M:/2jbwkdDAKB7w6J3M

Score
8/10
discoveryexploitpersistence

Malware Config

Targets

    • Target

      b7967c759f798ad36883d8bbaa5913e1541fe8fe86b7a43f93c38bb92b05a796

    • Size

      36KB

    • MD5

      6aed9809f8dedf5a2ca4d872e432aeb0

    • SHA1

      59ef52703adfbda6a06d41ae1c739c015b5167bd

    • SHA256

      b7967c759f798ad36883d8bbaa5913e1541fe8fe86b7a43f93c38bb92b05a796

    • SHA512

      23f12f498f5b1ed8e9952c9ce837460aa01a78b7f0d6105e9597a20a73513c5e1cd2ea7860c4013b574efa0f25548c0660ca57817ae686a912097fff186d9b9d

    • SSDEEP

      768:/2EFOQ2zcv3XkXfwwrLZbDvytKB7AgzzZKfp6jt3M:/2jbwkdDAKB7w6J3M

    Score
    8/10
    discoveryexploitpersistence

    • Possible privilege escalation attempt

      exploit

    • Modifies file permissions

      discovery

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

File Permissions Modification

1
T1222

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks