8ba5c2783d939f09e29f61946023900a17ccab1bbe1b509e429d0829400dcd91 | Triage

Sharing

General

Target

8ba5c2783d939f09e29f61946023900a17ccab1bbe1b509e429d0829400dcd91
Size

56KB
Sample

221107-nz7tqseda4
MD5

0f455507d70ead389b9cd6a8fa2cc086
SHA1

a6cd94ad041e83ec53fa6b8cde9da8fb8037b5ed
SHA256

8ba5c2783d939f09e29f61946023900a17ccab1bbe1b509e429d0829400dcd91
SHA512

f90213292dc36a69c43e96e0bf05931b2507730ed471416e58fe90e1a27f2f998c2310d6de44729b60c7ef152c550c0967b5ef477a73017c8c3c7a007e7e175c
SSDEEP

768:FfZRoL1rbrMS4OpjOqvYMp11ZbX3PjOXpVcA6Fp95052OKUBKrOYGIEMHMbuSM4R:FfsLhbXCo9z1ZbXiDK+/ZNlvzOvM

Score

8^/10

discovery exploit

Malware Config

Targets

- Target
  
  8ba5c2783d939f09e29f61946023900a17ccab1bbe1b509e429d0829400dcd91
- Size
  
  56KB
- MD5
  
  0f455507d70ead389b9cd6a8fa2cc086
- SHA1
  
  a6cd94ad041e83ec53fa6b8cde9da8fb8037b5ed
- SHA256
  
  8ba5c2783d939f09e29f61946023900a17ccab1bbe1b509e429d0829400dcd91
- SHA512
  
  f90213292dc36a69c43e96e0bf05931b2507730ed471416e58fe90e1a27f2f998c2310d6de44729b60c7ef152c550c0967b5ef477a73017c8c3c7a007e7e175c
- SSDEEP
  
  768:FfZRoL1rbrMS4OpjOqvYMp11ZbX3PjOXpVcA6Fp95052OKUBKrOYGIEMHMbuSM4R:FfsLhbXCo9z1ZbXiDK+/ZNlvzOvM
Score

8^/10

discovery exploit
- Possible privilege escalation attempt
  exploit
- Modifies file permissions
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryexploit

behavioral2

discoveryexploit