Overview

overview

8

Static

static

b05e74890c...35.exe

windows7-x64

8

b05e74890c...35.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b05e74890ce4e340c6d0b6f156e001d15583d265c69021ea4fdf47dd9e718c35

  • Size

    40KB

  • Sample

    221029-y5qgradfd5

  • MD5

    a3629e1ac9a406713d4301202e559d00

  • SHA1

    38504d98f976fa87da12a9c0165f5e37dc33611a

  • SHA256

    b05e74890ce4e340c6d0b6f156e001d15583d265c69021ea4fdf47dd9e718c35

  • SHA512

    76ae82802fc763c2991e2d41e85934ff13dacf81fe19c82051cdd70c99e66ab590f540664f8c9342312cde6c02b11551b3d9f2f37a85d01ae9bfa48463939540

  • SSDEEP

    768:/o8zm5DKduqIO6XFUztOjGVYTxtmBUASDmyTgB97:/54sCxtEyTgB97

Score
8/10
discoveryexploitpersistence

Malware Config

Targets

    • Target

      b05e74890ce4e340c6d0b6f156e001d15583d265c69021ea4fdf47dd9e718c35

    • Size

      40KB

    • MD5

      a3629e1ac9a406713d4301202e559d00

    • SHA1

      38504d98f976fa87da12a9c0165f5e37dc33611a

    • SHA256

      b05e74890ce4e340c6d0b6f156e001d15583d265c69021ea4fdf47dd9e718c35

    • SHA512

      76ae82802fc763c2991e2d41e85934ff13dacf81fe19c82051cdd70c99e66ab590f540664f8c9342312cde6c02b11551b3d9f2f37a85d01ae9bfa48463939540

    • SSDEEP

      768:/o8zm5DKduqIO6XFUztOjGVYTxtmBUASDmyTgB97:/54sCxtEyTgB97

    Score
    8/10
    discoveryexploitpersistence

    • Possible privilege escalation attempt

      exploit

    • Modifies file permissions

      discovery

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

File Permissions Modification

1
T1222

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks