76ce629e64c5ea65afdf1f256619d9319664d894bad52336b14f434117d20fd8 | Triage

Sharing

General

Target

76ce629e64c5ea65afdf1f256619d9319664d894bad52336b14f434117d20fd8
Size

1.4MB
Sample

221106-fqn19sgaeq
MD5

10b60193e3723958abf271e79434dd80
SHA1

6a6552952fe17a8e34248bd947d536bb17ac0327
SHA256

76ce629e64c5ea65afdf1f256619d9319664d894bad52336b14f434117d20fd8
SHA512

5a0bdf065f557e5412eb05d740d572044abc3adfbcf815242669a919a5b44dc09421cc7e0aab5594484bf1f5a65121afefce884bdf2e9cb572b7a60b92fea1e1
SSDEEP

24576:8NmF/mnBoDM5f7F2XQRKZk+61i5cCPWZj+VhyDvsuxxQ/zhmLSiVVloZy4/P:8YVZo5TcXQqk+61i5cYWZjSEUqq/5iV+

Score

8^/10

discovery exploit

Malware Config

Targets

- Target
  
  76ce629e64c5ea65afdf1f256619d9319664d894bad52336b14f434117d20fd8
- Size
  
  1.4MB
- MD5
  
  10b60193e3723958abf271e79434dd80
- SHA1
  
  6a6552952fe17a8e34248bd947d536bb17ac0327
- SHA256
  
  76ce629e64c5ea65afdf1f256619d9319664d894bad52336b14f434117d20fd8
- SHA512
  
  5a0bdf065f557e5412eb05d740d572044abc3adfbcf815242669a919a5b44dc09421cc7e0aab5594484bf1f5a65121afefce884bdf2e9cb572b7a60b92fea1e1
- SSDEEP
  
  24576:8NmF/mnBoDM5f7F2XQRKZk+61i5cCPWZj+VhyDvsuxxQ/zhmLSiVVloZy4/P:8YVZo5TcXQqk+61i5cYWZjSEUqq/5iV+
Score

8^/10

discovery exploit
- Executes dropped EXE
- Possible privilege escalation attempt
  exploit
- Loads dropped DLL
- Modifies file permissions
  discovery
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Permissions Modification

Credential Access

Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryexploit

behavioral2

discoveryexploit