Overview

overview

8

Static

static

35438960f8...df.exe

windows7-x64

8

35438960f8...df.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    35438960f83f6e40b46354f6e29e646a1255463c248d51dab60508e094240adf

  • Size

    1.1MB

  • Sample

    221029-ptfczageel

  • MD5

    6c2bbe7cccfb05c34d6ec356ac0f05f8

  • SHA1

    4c34dcefe2acf223430313185d61884626a95aee

  • SHA256

    35438960f83f6e40b46354f6e29e646a1255463c248d51dab60508e094240adf

  • SHA512

    b36ba008d2bee73bfd73369379e051bab5066bfa0314cce8650b0dfc1297aad35b7bc501181026c9d5c09cd79376f1003111e75e1dd9770e5d1a2db85429f030

  • SSDEEP

    24576:WNef3/2LsboXZvAG1kGk7DJ8kGjbXsUEGzQJyKeDYwxFYLua:WofTbotv1kGg87b3EGzQsBDYwcya

Score
8/10
discoveryexploit

Malware Config

Targets

    • Target

      35438960f83f6e40b46354f6e29e646a1255463c248d51dab60508e094240adf

    • Size

      1.1MB

    • MD5

      6c2bbe7cccfb05c34d6ec356ac0f05f8

    • SHA1

      4c34dcefe2acf223430313185d61884626a95aee

    • SHA256

      35438960f83f6e40b46354f6e29e646a1255463c248d51dab60508e094240adf

    • SHA512

      b36ba008d2bee73bfd73369379e051bab5066bfa0314cce8650b0dfc1297aad35b7bc501181026c9d5c09cd79376f1003111e75e1dd9770e5d1a2db85429f030

    • SSDEEP

      24576:WNef3/2LsboXZvAG1kGk7DJ8kGjbXsUEGzQJyKeDYwxFYLua:WofTbotv1kGg87b3EGzQsBDYwcya

    Score
    8/10
    discoveryexploit

    • Executes dropped EXE

    • Possible privilege escalation attempt

      exploit

    • Loads dropped DLL

    • Modifies file permissions

      discovery

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Permissions Modification

1
T1222

Credential Access

Discovery

Query Registry

1
T1012

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks