Overview

overview

8

Static

static

2da0f43e59...7b.exe

windows7-x64

8

2da0f43e59...7b.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    lenovo.zip

  • Size

    9.5MB

  • Sample

    221103-sszl1aebbm

  • MD5

    3d28f19e2003528d1971bc0562e6f268

  • SHA1

    ef2104445ed9f1fa23e6b960540dd3801c8e6154

  • SHA256

    8ddf1932be354b3e2ab38bb68c07422aac94645e492a7a61cb04149f799a7cb0

  • SHA512

    2a0a3e3d6fca3db13102803a0dae391952e6e77d013797b040405d73db4658a68c8209636d50caf6bbd0a70a1c3d741c9f9351e036d2b91ad9536df1312925b2

  • SSDEEP

    196608:JwMJqUSs9JXEsQK62R56bxRuUHn9Lmw0egC9iCI9vUUqnSnP66kKGU:YoxEs6a6b37n9Sw0ea9vdoSni6Hr

Score
8/10
discoveryexploit

Malware Config

Targets

    • Target

      2da0f43e59c603b946f4e03c2cd44ad85de9e8df9b3d0cc8af166edcb5ba057b

    • Size

      9.6MB

    • MD5

      699bdbd2b656d80d8e8a467025536d52

    • SHA1

      cb4a2a7f3b39fc41ce0d935e7851117422364c76

    • SHA256

      2da0f43e59c603b946f4e03c2cd44ad85de9e8df9b3d0cc8af166edcb5ba057b

    • SHA512

      0589ad9ee15411f5de41ef6570515b0b320a3cae040e70f94bb56ecb85292be561ac05f37891fe913c26045ac5058118daa7f3c66681458ecb693bdbfb65758f

    • SSDEEP

      196608:mZNNPxSRvMx1GffQf0DQR3FkiUzD30xs7LpLJwN7aIH/avHwjwh2FrfX6:mZN17GffEJRSiUfZXptOWq/3s2FX

    Score
    8/10
    discoveryexploit

    • Executes dropped EXE

    • Possible privilege escalation attempt

      exploit

    • Loads dropped DLL

    • Modifies file permissions

      discovery
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Defense Evasion

File Permissions Modification

1
T1222

Credential Access

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks