aa872676e5a6cd015e39fa9f0eae4864b2fc15cd8cd01ccfce6ac0ad8808d0f1 | Triage

Sharing

General

Target

aa872676e5a6cd015e39fa9f0eae4864b2fc15cd8cd01ccfce6ac0ad8808d0f1
Size

56KB
Sample

221119-szwhxsha97
MD5

5591211a3b6591dcfdda3254820eb446
SHA1

25f0b212b9e083f900fbc14f8fc900295a4b9b4c
SHA256

aa872676e5a6cd015e39fa9f0eae4864b2fc15cd8cd01ccfce6ac0ad8808d0f1
SHA512

c26bcdcd35e8676b9a2e520c783596c7bb24f68f81b166ad5e0ac9de7f222fd7e5a5a46c6e915e5a491622c58ddd668593303df93e5d710ebfc72cf269777e45
SSDEEP

768:V2Yi/RoaeqRHphT0uoUVdPEV2Ux9l8pwrdgbElTZ2ZeT:c5/RpwUVdMYkl8YdjMeT

Score

8^/10

discovery exploit

Malware Config

Targets

- Target
  
  aa872676e5a6cd015e39fa9f0eae4864b2fc15cd8cd01ccfce6ac0ad8808d0f1
- Size
  
  56KB
- MD5
  
  5591211a3b6591dcfdda3254820eb446
- SHA1
  
  25f0b212b9e083f900fbc14f8fc900295a4b9b4c
- SHA256
  
  aa872676e5a6cd015e39fa9f0eae4864b2fc15cd8cd01ccfce6ac0ad8808d0f1
- SHA512
  
  c26bcdcd35e8676b9a2e520c783596c7bb24f68f81b166ad5e0ac9de7f222fd7e5a5a46c6e915e5a491622c58ddd668593303df93e5d710ebfc72cf269777e45
- SSDEEP
  
  768:V2Yi/RoaeqRHphT0uoUVdPEV2Ux9l8pwrdgbElTZ2ZeT:c5/RpwUVdMYkl8YdjMeT
Score

8^/10

discovery exploit
- Possible privilege escalation attempt
  exploit
- Modifies file permissions
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryexploit

behavioral2

discoveryexploit