Overview

overview

8

Static

static

88b2f85cdf...f3.exe

windows7-x64

8

88b2f85cdf...f3.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    88b2f85cdf9380a2bbfed6fb45bb0d9ef9dcfa1e68019a9e708a4b10aca165f3

  • Size

    40KB

  • Sample

    221107-n29fcaedh6

  • MD5

    0f76358e5c2bbf8c46c2559272b25ca6

  • SHA1

    81e2f49d2a6c2e9f4b768bebb382e847f3069a74

  • SHA256

    88b2f85cdf9380a2bbfed6fb45bb0d9ef9dcfa1e68019a9e708a4b10aca165f3

  • SHA512

    64aec74be2351c5f90f4c41244b3e5875ced252731b2bc0c6e3f673094354754f47b77ef8340354a7e80dd82017d07342ae836ea530b7cd9ff7a33b1fb3c62a5

  • SSDEEP

    768:/uDu9GYNdVIYKiZynNVMlxcwa4cFBMdzQj0ZiTcwwuUCYD:/uDtkXlDcwa4c0dopYD

Score
8/10
discoveryexploitpersistence

Malware Config

Targets

    • Target

      88b2f85cdf9380a2bbfed6fb45bb0d9ef9dcfa1e68019a9e708a4b10aca165f3

    • Size

      40KB

    • MD5

      0f76358e5c2bbf8c46c2559272b25ca6

    • SHA1

      81e2f49d2a6c2e9f4b768bebb382e847f3069a74

    • SHA256

      88b2f85cdf9380a2bbfed6fb45bb0d9ef9dcfa1e68019a9e708a4b10aca165f3

    • SHA512

      64aec74be2351c5f90f4c41244b3e5875ced252731b2bc0c6e3f673094354754f47b77ef8340354a7e80dd82017d07342ae836ea530b7cd9ff7a33b1fb3c62a5

    • SSDEEP

      768:/uDu9GYNdVIYKiZynNVMlxcwa4cFBMdzQj0ZiTcwwuUCYD:/uDtkXlDcwa4c0dopYD

    Score
    8/10
    discoveryexploitpersistence

    • Possible privilege escalation attempt

      exploit

    • Modifies file permissions

      discovery

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

File Permissions Modification

1
T1222

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks