Overview

overview

8

Static

static

2b6200b780...ed.exe

windows7-x64

8

2b6200b780...ed.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2b6200b7809e8ee17d4294be04c6312d3ab8b542c639db8e6d88d7f9e2c536ed

  • Size

    72KB

  • Sample

    221119-ahpd6saa9x

  • MD5

    1b870218cf2d6a0d33a7f52dbf5bcce1

  • SHA1

    b3767e9b9f5f8c6911adf0d390cd567f0ad4efb4

  • SHA256

    2b6200b7809e8ee17d4294be04c6312d3ab8b542c639db8e6d88d7f9e2c536ed

  • SHA512

    d0b43096efbac642b90ef6ce6db0ed417d6bb39d91049935317cdf0b07823fb812bea41d4fc89b654e985df00adf0d412e6a4cdaccebbe0ac83726721054f084

  • SSDEEP

    1536:mD7BoolMEe71MOUOY0n0hQoTM4xxRkq+dBO:mD+eMdBT7Yw0hQs3V+fO

Score
8/10
discoveryexploit

Malware Config

Targets

    • Target

      2b6200b7809e8ee17d4294be04c6312d3ab8b542c639db8e6d88d7f9e2c536ed

    • Size

      72KB

    • MD5

      1b870218cf2d6a0d33a7f52dbf5bcce1

    • SHA1

      b3767e9b9f5f8c6911adf0d390cd567f0ad4efb4

    • SHA256

      2b6200b7809e8ee17d4294be04c6312d3ab8b542c639db8e6d88d7f9e2c536ed

    • SHA512

      d0b43096efbac642b90ef6ce6db0ed417d6bb39d91049935317cdf0b07823fb812bea41d4fc89b654e985df00adf0d412e6a4cdaccebbe0ac83726721054f084

    • SSDEEP

      1536:mD7BoolMEe71MOUOY0n0hQoTM4xxRkq+dBO:mD+eMdBT7Yw0hQs3V+fO

    Score
    8/10
    discoveryexploit

    • Possible privilege escalation attempt

      exploit

    • Modifies file permissions

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Permissions Modification

1
T1222

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks