Overview

overview

8

Static

static

0f012a13c8...c1.exe

windows7-x64

7

0f012a13c8...c1.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0f012a13c805c59ad698f6d24ec4968d9e82a472b8e62cd54927f4105893a0c1

  • Size

    16KB

  • Sample

    221011-s9ps5acfdq

  • MD5

    19a2da46a57ea5033f975a9e193f7ed0

  • SHA1

    42ae10e9ff69bbb8242d82da593d0a81ca31d050

  • SHA256

    0f012a13c805c59ad698f6d24ec4968d9e82a472b8e62cd54927f4105893a0c1

  • SHA512

    a238059e616beb860120513715394927405f4aa0980296fab10576f1b85ade2995c18ccc84e4a94397efe302cdde11cac1a7a6b31664f14452455c9ae9bddebb

  • SSDEEP

    384:GYMzSPIsTt8uPJa7Y7fzo724PBoqXlm/Bh:G+QsTCJY7MxqF/j

Score
8/10
discoveryexploit

Malware Config

Targets

    • Target

      0f012a13c805c59ad698f6d24ec4968d9e82a472b8e62cd54927f4105893a0c1

    • Size

      16KB

    • MD5

      19a2da46a57ea5033f975a9e193f7ed0

    • SHA1

      42ae10e9ff69bbb8242d82da593d0a81ca31d050

    • SHA256

      0f012a13c805c59ad698f6d24ec4968d9e82a472b8e62cd54927f4105893a0c1

    • SHA512

      a238059e616beb860120513715394927405f4aa0980296fab10576f1b85ade2995c18ccc84e4a94397efe302cdde11cac1a7a6b31664f14452455c9ae9bddebb

    • SSDEEP

      384:GYMzSPIsTt8uPJa7Y7fzo724PBoqXlm/Bh:G+QsTCJY7MxqF/j

    Score
    8/10
    discoveryexploit

    • Possible privilege escalation attempt

      exploit

    • Deletes itself

    • Modifies file permissions

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Permissions Modification

1
T1222

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks