Overview

overview

8

Static

static

bcfd9c451b...ad.exe

windows7-x64

8

bcfd9c451b...ad.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bcfd9c451ba019e85c93d3903135fbae6420b21878559966e82896427a3070ad

  • Size

    48KB

  • Sample

    221004-bspncsfdfr

  • MD5

    08fc5b8c8cf94368ddec6e211ac96be0

  • SHA1

    6a541d948b7f8b905b83f49c16d9ae60cf42b333

  • SHA256

    bcfd9c451ba019e85c93d3903135fbae6420b21878559966e82896427a3070ad

  • SHA512

    e46c98e23e4e1faf3e7810b5c16ae6f42020d16957446ae272a5a2d9bef85a17684e2c83e45e6fc913ae380a21cc02432813bc60bc5a3ed385db82e9562d6a26

  • SSDEEP

    768:/z4aSgohU0vUxUk/0UviyFrxOWyOmQeOXJ/wETSrUpEX/i:/srbdAMUqyFFOwXJ/wETOUpm/i

Score
8/10
discoveryexploitpersistence

Malware Config

Targets

    • Target

      bcfd9c451ba019e85c93d3903135fbae6420b21878559966e82896427a3070ad

    • Size

      48KB

    • MD5

      08fc5b8c8cf94368ddec6e211ac96be0

    • SHA1

      6a541d948b7f8b905b83f49c16d9ae60cf42b333

    • SHA256

      bcfd9c451ba019e85c93d3903135fbae6420b21878559966e82896427a3070ad

    • SHA512

      e46c98e23e4e1faf3e7810b5c16ae6f42020d16957446ae272a5a2d9bef85a17684e2c83e45e6fc913ae380a21cc02432813bc60bc5a3ed385db82e9562d6a26

    • SSDEEP

      768:/z4aSgohU0vUxUk/0UviyFrxOWyOmQeOXJ/wETSrUpEX/i:/srbdAMUqyFFOwXJ/wETOUpm/i

    Score
    8/10
    discoveryexploitpersistence

    • Possible privilege escalation attempt

      exploit

    • Modifies file permissions

      discovery

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

File Permissions Modification

1
T1222

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks