0100aad5927565cbfbad1c33ef24518336fe31b536a10328241ce301b7f5698b | Triage

Sharing

General

Target

0100aad5927565cbfbad1c33ef24518336fe31b536a10328241ce301b7f5698b
Size

52KB
Sample

221011-ke339sebd9
MD5

7c51a51296ac33818d005ee84a748550
SHA1

e4765078097b3e436883c524738145846ba923dc
SHA256

0100aad5927565cbfbad1c33ef24518336fe31b536a10328241ce301b7f5698b
SHA512

25980f1193f33766d4fdef47fdddd5cb5baa5410cc91a2a5426709bc8740e9c0f339bc42fbe9086ae0992dbff69d4bf5b0a4435e5e93ce093a989d62ccec0b9d
SSDEEP

768:BsIQjiueq0Stgake+/wLEfIsufS2R4JFwrHxczyBgEMAyiEgHaKlqHkBrYsTYQQB:6JjT+Stgy0IdiGOoBrYswHQH0vH

Score

8^/10

discovery exploit persistence

Malware Config

Targets

- Target
  
  0100aad5927565cbfbad1c33ef24518336fe31b536a10328241ce301b7f5698b
- Size
  
  52KB
- MD5
  
  7c51a51296ac33818d005ee84a748550
- SHA1
  
  e4765078097b3e436883c524738145846ba923dc
- SHA256
  
  0100aad5927565cbfbad1c33ef24518336fe31b536a10328241ce301b7f5698b
- SHA512
  
  25980f1193f33766d4fdef47fdddd5cb5baa5410cc91a2a5426709bc8740e9c0f339bc42fbe9086ae0992dbff69d4bf5b0a4435e5e93ce093a989d62ccec0b9d
- SSDEEP
  
  768:BsIQjiueq0Stgake+/wLEfIsufS2R4JFwrHxczyBgEMAyiEgHaKlqHkBrYsTYQQB:6JjT+Stgy0IdiGOoBrYswHQH0vH
Score

8^/10

discovery exploit persistence
- Possible privilege escalation attempt
  exploit
- Modifies file permissions
  discovery
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

File Permissions Modification

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryexploitpersistence

behavioral2

discoveryexploitpersistence