3b0ea7cfddf72045bb952a7991e817053f42bc6a93dc98d3a3b411a2ad109c10 | Triage

Sharing

General

Target

3b0ea7cfddf72045bb952a7991e817053f42bc6a93dc98d3a3b411a2ad109c10
Size

60KB
Sample

221107-qwysrshgh3
MD5

0680f7da6630e9e3927f2ab51cc86176
SHA1

e4b4b1c8ed1253c17a10760561cbf1d98249702f
SHA256

3b0ea7cfddf72045bb952a7991e817053f42bc6a93dc98d3a3b411a2ad109c10
SHA512

d8e814cbedb3b07c0c31dde09d196ee968abecd67545473e7d48dbdb8f0b5e033c3bbe6cac90bc7fde0657d77b413ff4674bfc8e8c7fd9d2d9da9c99778aba8c
SSDEEP

768:ZYIW166zXOxkJYnHVaSPKRpqRzKBAQs8NpvgEYZ0wzS3/AEZRR:ZYrN+xBgSGpqRzKuQsHjPzSIoRR

Score

8^/10

discovery exploit

Malware Config

Targets

- Target
  
  3b0ea7cfddf72045bb952a7991e817053f42bc6a93dc98d3a3b411a2ad109c10
- Size
  
  60KB
- MD5
  
  0680f7da6630e9e3927f2ab51cc86176
- SHA1
  
  e4b4b1c8ed1253c17a10760561cbf1d98249702f
- SHA256
  
  3b0ea7cfddf72045bb952a7991e817053f42bc6a93dc98d3a3b411a2ad109c10
- SHA512
  
  d8e814cbedb3b07c0c31dde09d196ee968abecd67545473e7d48dbdb8f0b5e033c3bbe6cac90bc7fde0657d77b413ff4674bfc8e8c7fd9d2d9da9c99778aba8c
- SSDEEP
  
  768:ZYIW166zXOxkJYnHVaSPKRpqRzKBAQs8NpvgEYZ0wzS3/AEZRR:ZYrN+xBgSGpqRzKuQsHjPzSIoRR
Score

8^/10

discovery exploit
- Possible privilege escalation attempt
  exploit
- Modifies file permissions
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryexploit

behavioral2

discoveryexploit