e23a84573f263fa777d4960bb80c11fe48408edf640b0b1c0da886fc08e7fc67 | Triage

Sharing

General

Target

e23a84573f263fa777d4960bb80c11fe48408edf640b0b1c0da886fc08e7fc67
Size

1.4MB
Sample

221011-tv2d2sdfhp
MD5

4b9ae3ddf312aecbd5565378c9834c50
SHA1

99efa90050a1a0eae5de992c89a5a2c8ad067d0b
SHA256

e23a84573f263fa777d4960bb80c11fe48408edf640b0b1c0da886fc08e7fc67
SHA512

36282a300299cecd11a89b112722c808fb8ce5e381456d9a45b1992b3d072c67e50c6b64802e625de3e2e3041d82e36696475eda799453603723aafe4ba8e510
SSDEEP

24576:aNmF/mnBoDM5f7F23rKZk+61i5cCPWZj+VhL8OamPRKplJfVXT24WTEvzHJDsP:aYVZo5Tc30k+61i5cYWZjSTDPYtfVjNG

Score

8^/10

discovery exploit

Malware Config

Targets

- Target
  
  e23a84573f263fa777d4960bb80c11fe48408edf640b0b1c0da886fc08e7fc67
- Size
  
  1.4MB
- MD5
  
  4b9ae3ddf312aecbd5565378c9834c50
- SHA1
  
  99efa90050a1a0eae5de992c89a5a2c8ad067d0b
- SHA256
  
  e23a84573f263fa777d4960bb80c11fe48408edf640b0b1c0da886fc08e7fc67
- SHA512
  
  36282a300299cecd11a89b112722c808fb8ce5e381456d9a45b1992b3d072c67e50c6b64802e625de3e2e3041d82e36696475eda799453603723aafe4ba8e510
- SSDEEP
  
  24576:aNmF/mnBoDM5f7F23rKZk+61i5cCPWZj+VhL8OamPRKplJfVXT24WTEvzHJDsP:aYVZo5Tc30k+61i5cYWZjSTDPYtfVjNG
Score

8^/10

discovery exploit
- Executes dropped EXE
- Possible privilege escalation attempt
  exploit
- Loads dropped DLL
- Modifies file permissions
  discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Permissions Modification

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryexploit

behavioral2

discoveryexploit