3b0ea7cfddf72045bb952a7991e817053f42bc6a93dc98d3a3b411a2ad109c10 | Triage

Sharing

General

Target

3b0ea7cfddf72045bb952a7991e817053f42bc6a93dc98d3a3b411a2ad109c10
Size

60KB
Sample

221107-qwysrshgh3
MD5

0680f7da6630e9e3927f2ab51cc86176
SHA1

e4b4b1c8ed1253c17a10760561cbf1d98249702f
SHA256

3b0ea7cfddf72045bb952a7991e817053f42bc6a93dc98d3a3b411a2ad109c10
SHA512

d8e814cbedb3b07c0c31dde09d196ee968abecd67545473e7d48dbdb8f0b5e033c3bbe6cac90bc7fde0657d77b413ff4674bfc8e8c7fd9d2d9da9c99778aba8c
SSDEEP

768:ZYIW166zXOxkJYnHVaSPKRpqRzKBAQs8NpvgEYZ0wzS3/AEZRR:ZYrN+xBgSGpqRzKuQsHjPzSIoRR

Score

8^/10

discovery exploit

Malware Config

Targets

- Target
  
  3b0ea7cfddf72045bb952a7991e817053f42bc6a93dc98d3a3b411a2ad109c10
- Size
  
  60KB
- MD5
  
  0680f7da6630e9e3927f2ab51cc86176
- SHA1
  
  e4b4b1c8ed1253c17a10760561cbf1d98249702f
- SHA256
  
  3b0ea7cfddf72045bb952a7991e817053f42bc6a93dc98d3a3b411a2ad109c10
- SHA512
  
  d8e814cbedb3b07c0c31dde09d196ee968abecd67545473e7d48dbdb8f0b5e033c3bbe6cac90bc7fde0657d77b413ff4674bfc8e8c7fd9d2d9da9c99778aba8c
- SSDEEP
  
  768:ZYIW166zXOxkJYnHVaSPKRpqRzKBAQs8NpvgEYZ0wzS3/AEZRR:ZYrN+xBgSGpqRzKuQsHjPzSIoRR
Score

8^/10

discovery exploit
- Possible privilege escalation attempt
  exploit
- Modifies file permissions
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryexploit

behavioral2

discoveryexploit