38d5682610ca41b6bd8caac40c9e00d6bf434bfc0af7e18f3c7b99b55858ba24 | Triage

Sharing

General

Target

38d5682610ca41b6bd8caac40c9e00d6bf434bfc0af7e18f3c7b99b55858ba24
Size

40KB
Sample

221029-y5p6zsdfd4
MD5

55afea6e347e2249fab29a55a5df9ba1
SHA1

0908dd743908cd8208f835a301286c81a1d22642
SHA256

38d5682610ca41b6bd8caac40c9e00d6bf434bfc0af7e18f3c7b99b55858ba24
SHA512

5d0ede7e4a56ba1e0858446f23245a8461c108caa451112f76bd939123fd96f840e2282cda90cc56764aeffee3c0689169b3891d7b53f20c3767338df47f8a77
SSDEEP

768:/h/9q0veEenzRCAXMDNF3kufag/01IPfD2WWPR3i:/h/9jdCCAohfag/08fDqZi

Score

8^/10

discovery exploit persistence

Malware Config

Targets

- Target
  
  38d5682610ca41b6bd8caac40c9e00d6bf434bfc0af7e18f3c7b99b55858ba24
- Size
  
  40KB
- MD5
  
  55afea6e347e2249fab29a55a5df9ba1
- SHA1
  
  0908dd743908cd8208f835a301286c81a1d22642
- SHA256
  
  38d5682610ca41b6bd8caac40c9e00d6bf434bfc0af7e18f3c7b99b55858ba24
- SHA512
  
  5d0ede7e4a56ba1e0858446f23245a8461c108caa451112f76bd939123fd96f840e2282cda90cc56764aeffee3c0689169b3891d7b53f20c3767338df47f8a77
- SSDEEP
  
  768:/h/9q0veEenzRCAXMDNF3kufag/01IPfD2WWPR3i:/h/9jdCCAohfag/08fDqZi
Score

8^/10

discovery exploit persistence
- Possible privilege escalation attempt
  exploit
- Modifies file permissions
  discovery
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

File Permissions Modification

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryexploitpersistence

behavioral2

discoveryexploitpersistence