800a2790ba2e88fc64ffc34dbdb8a37b91082ae3c8f37439430adfea29f022ec | Triage

Sharing

General

Target

800a2790ba2e88fc64ffc34dbdb8a37b91082ae3c8f37439430adfea29f022ec
Size

72KB
Sample

221119-h3j9yseb6z
MD5

096325d737bd6b67b2ca435ad6426be1
SHA1

0404febbc135b17bace80cf7d945e3b6c89b7607
SHA256

800a2790ba2e88fc64ffc34dbdb8a37b91082ae3c8f37439430adfea29f022ec
SHA512

4e213551524704883242ed8d3ffb37dfab7a6f65f67e9ef64831f1866dee3b7e672d68477271985f11ed12d18ba66ac9760e376e3265221da83e4e551d446724
SSDEEP

768:I9r9B4F/P3GFUfOLSdFbO0WA6NeqOA398Pg/dewX6yDUgsId2DzjVdGEXi6:IPB4NP/dg0ANM9TymvzjLNH

Score

8^/10

discovery exploit

Malware Config

Targets

- Target
  
  800a2790ba2e88fc64ffc34dbdb8a37b91082ae3c8f37439430adfea29f022ec
- Size
  
  72KB
- MD5
  
  096325d737bd6b67b2ca435ad6426be1
- SHA1
  
  0404febbc135b17bace80cf7d945e3b6c89b7607
- SHA256
  
  800a2790ba2e88fc64ffc34dbdb8a37b91082ae3c8f37439430adfea29f022ec
- SHA512
  
  4e213551524704883242ed8d3ffb37dfab7a6f65f67e9ef64831f1866dee3b7e672d68477271985f11ed12d18ba66ac9760e376e3265221da83e4e551d446724
- SSDEEP
  
  768:I9r9B4F/P3GFUfOLSdFbO0WA6NeqOA398Pg/dewX6yDUgsId2DzjVdGEXi6:IPB4NP/dg0ANM9TymvzjLNH
Score

8^/10

discovery exploit
- Possible privilege escalation attempt
  exploit
- Modifies file permissions
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryexploit

behavioral2

discoveryexploit