71c7c7abb28d61525629eae7155f7e6f80dd8ac5890bbffcda442fb7b9b914d0 | Triage

Sharing

General

Target

71c7c7abb28d61525629eae7155f7e6f80dd8ac5890bbffcda442fb7b9b914d0
Size

40KB
Sample

221107-plefpsfdh8
MD5

0df526fb078ea80877c53ca07981ead0
SHA1

c1d6db91c7d69ad98949f7c25c13a9a84559cce1
SHA256

71c7c7abb28d61525629eae7155f7e6f80dd8ac5890bbffcda442fb7b9b914d0
SHA512

a476b94d72eb257f6313e607ca908d6608b6c2e5a30b1d4fff17bd3437a52b3393c06a0017501815db3dcdb3176b220ce81245d9587c0bca0a294c27696505e8
SSDEEP

768:/4q31nOB9pDFxP+4bfWdGn36VMHnKMGK0c1snx:/4o9qDpbf0sq6HMnx

Score

8^/10

discovery exploit persistence

Malware Config

Targets

- Target
  
  71c7c7abb28d61525629eae7155f7e6f80dd8ac5890bbffcda442fb7b9b914d0
- Size
  
  40KB
- MD5
  
  0df526fb078ea80877c53ca07981ead0
- SHA1
  
  c1d6db91c7d69ad98949f7c25c13a9a84559cce1
- SHA256
  
  71c7c7abb28d61525629eae7155f7e6f80dd8ac5890bbffcda442fb7b9b914d0
- SHA512
  
  a476b94d72eb257f6313e607ca908d6608b6c2e5a30b1d4fff17bd3437a52b3393c06a0017501815db3dcdb3176b220ce81245d9587c0bca0a294c27696505e8
- SSDEEP
  
  768:/4q31nOB9pDFxP+4bfWdGn36VMHnKMGK0c1snx:/4o9qDpbf0sq6HMnx
Score

8^/10

discovery exploit persistence
- Possible privilege escalation attempt
  exploit
- Modifies file permissions
  discovery
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryexploitpersistence

behavioral2

discoveryexploitpersistence