10eff029ce21565d01a6709d49b7456618b82dbaf3d3d22f47ff15c9d3ee43dc | Triage

Sharing

General

Target

10eff029ce21565d01a6709d49b7456618b82dbaf3d3d22f47ff15c9d3ee43dc
Size

1.4MB
Sample

221020-vxk1hsfca5
MD5

415447474bcdfba2119af011b050eba0
SHA1

21a9a2e7fe8c769e93d823493ad1f5270e031dbd
SHA256

10eff029ce21565d01a6709d49b7456618b82dbaf3d3d22f47ff15c9d3ee43dc
SHA512

2ba60ebeb9af4d3d2ef7cbefbeeb6a33f5d999865bda4a81607eaa540def37c06d1ad340434a96f63d8a23ae75145edd3b4211b59ff13f868346508be06b5f56
SSDEEP

24576:TNmF/mnBoDM5f7F2XQRKZk+61i5cCPWZj+VhyDvsuxxQ/zhmLSiVVloZy4/k:TYVZo5TcXQqk+61i5cYWZjSEUqq/5iVx

Score

8^/10

discovery exploit

Malware Config

Targets

- Target
  
  10eff029ce21565d01a6709d49b7456618b82dbaf3d3d22f47ff15c9d3ee43dc
- Size
  
  1.4MB
- MD5
  
  415447474bcdfba2119af011b050eba0
- SHA1
  
  21a9a2e7fe8c769e93d823493ad1f5270e031dbd
- SHA256
  
  10eff029ce21565d01a6709d49b7456618b82dbaf3d3d22f47ff15c9d3ee43dc
- SHA512
  
  2ba60ebeb9af4d3d2ef7cbefbeeb6a33f5d999865bda4a81607eaa540def37c06d1ad340434a96f63d8a23ae75145edd3b4211b59ff13f868346508be06b5f56
- SSDEEP
  
  24576:TNmF/mnBoDM5f7F2XQRKZk+61i5cCPWZj+VhyDvsuxxQ/zhmLSiVVloZy4/k:TYVZo5TcXQqk+61i5cYWZjSEUqq/5iVx
Score

8^/10

discovery exploit
- Executes dropped EXE
- Possible privilege escalation attempt
  exploit
- Loads dropped DLL
- Modifies file permissions
  discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Permissions Modification

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryexploit

behavioral2

discoveryexploit