25ab4212c8f62de598ac8f8287aa40009fadfc9b49e7b1cb8e689a409a96953f | Triage

Sharing

General

Target

25ab4212c8f62de598ac8f8287aa40009fadfc9b49e7b1cb8e689a409a96953f
Size

40KB
Sample

221119-ekqggacg65
MD5

07608be1906ed2cd5aae27bc22e74af6
SHA1

04ec071dbe5256c380ffe30b0a9eeac52924045e
SHA256

25ab4212c8f62de598ac8f8287aa40009fadfc9b49e7b1cb8e689a409a96953f
SHA512

71d30623ce7ba1fd0459c4cbbc77f7fe88782376e995e17ad20818377eb33c573ce0d7acd0ff2fe4f93145c378a9bad96bc2c94b5cf118a6dea78a27ab34b917
SSDEEP

768:/wAbd1+wF1BKUVXezBzOnpdsl9Xd8eDOwKVOyL5fDmWt:/wAbys1B9XedMCzSRwKVP5fKWt

Score

8^/10

discovery exploit persistence

Malware Config

Targets

- Target
  
  25ab4212c8f62de598ac8f8287aa40009fadfc9b49e7b1cb8e689a409a96953f
- Size
  
  40KB
- MD5
  
  07608be1906ed2cd5aae27bc22e74af6
- SHA1
  
  04ec071dbe5256c380ffe30b0a9eeac52924045e
- SHA256
  
  25ab4212c8f62de598ac8f8287aa40009fadfc9b49e7b1cb8e689a409a96953f
- SHA512
  
  71d30623ce7ba1fd0459c4cbbc77f7fe88782376e995e17ad20818377eb33c573ce0d7acd0ff2fe4f93145c378a9bad96bc2c94b5cf118a6dea78a27ab34b917
- SSDEEP
  
  768:/wAbd1+wF1BKUVXezBzOnpdsl9Xd8eDOwKVOyL5fDmWt:/wAbys1B9XedMCzSRwKVP5fKWt
Score

8^/10

discovery exploit persistence
- Possible privilege escalation attempt
  exploit
- Modifies file permissions
  discovery
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

File Permissions Modification

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryexploitpersistence

behavioral2

discoveryexploitpersistence