Overview

overview

8

Static

static

12570017db...12.exe

windows7-x64

8

12570017db...12.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    12570017db741b3541a0be8202c0f60339d7d57212c6870224fec2bf2aaf2312

  • Size

    60KB

  • Sample

    221021-xsvp9sbec3

  • MD5

    166a8cec83c5e620cfe57290754a14b6

  • SHA1

    302ad1ed3a3518db09a36e0093b9cd188d819874

  • SHA256

    12570017db741b3541a0be8202c0f60339d7d57212c6870224fec2bf2aaf2312

  • SHA512

    81f8046fbfdb190ebc0fded12fb4271074c811910dc82ec94d995485e6a39f76e6230ca598c14dff07c7e27da14c594f697c6f13bac7fca1b6015691bc5f07e8

  • SSDEEP

    768:DOldkeuIiCinXTV99tcJ9ZzYeDpOGTIGzQEVET1PaK3YTcjZd3:D8uXHPcJ9Zz9d/MEVUld3

Score
8/10
discoveryexploit

Malware Config

Targets

    • Target

      12570017db741b3541a0be8202c0f60339d7d57212c6870224fec2bf2aaf2312

    • Size

      60KB

    • MD5

      166a8cec83c5e620cfe57290754a14b6

    • SHA1

      302ad1ed3a3518db09a36e0093b9cd188d819874

    • SHA256

      12570017db741b3541a0be8202c0f60339d7d57212c6870224fec2bf2aaf2312

    • SHA512

      81f8046fbfdb190ebc0fded12fb4271074c811910dc82ec94d995485e6a39f76e6230ca598c14dff07c7e27da14c594f697c6f13bac7fca1b6015691bc5f07e8

    • SSDEEP

      768:DOldkeuIiCinXTV99tcJ9ZzYeDpOGTIGzQEVET1PaK3YTcjZd3:D8uXHPcJ9Zz9d/MEVUld3

    Score
    8/10
    discoveryexploit

    • Possible privilege escalation attempt

      exploit

    • Modifies file permissions

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Permissions Modification

1
T1222

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks