20a3abda955d8b7c3b7f3b35785ca9d6d40105c2ed39c3185f445ca29dc24087 | Triage

Submit
Reports

Overview

overview

8

Static

static

20a3abda95...87.exe

windows7-x64

8

20a3abda95...87.exe

windows10-2004-x64

8

Sharing

General

Target

20a3abda955d8b7c3b7f3b35785ca9d6d40105c2ed39c3185f445ca29dc24087
Size

28KB
Sample

221120-mwgbyaaa55
MD5

4fedcbbb748b46dfcc5bf5cd3b98ee97
SHA1

1eb7e3a122e3aec420d022cf67d3b4c80073a008
SHA256

20a3abda955d8b7c3b7f3b35785ca9d6d40105c2ed39c3185f445ca29dc24087
SHA512

7a29b57ba377509acc3365f1f8f0107d56ebe6cf530c291045436c04f579f80e5345e186a49ca9669c8a9210c8cf2a564d06daaed183a8a94ba12128aa67d997
SSDEEP

768:XwcJmwfC23/wVC6VH9kUwV/cDNyuROTXOcFH8C1:Xq23/iC6VH9k6g6O7HFc2

Score

8^/10

discovery exploit

Static task

static1

Behavioral task

behavioral1

Sample

20a3abda955d8b7c3b7f3b35785ca9d6d40105c2ed39c3185f445ca29dc24087.exe

Resource

win7-20221111-en

discovery exploit

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

20a3abda955d8b7c3b7f3b35785ca9d6d40105c2ed39c3185f445ca29dc24087.exe

Resource

win10v2004-20220901-en

discovery exploit

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  20a3abda955d8b7c3b7f3b35785ca9d6d40105c2ed39c3185f445ca29dc24087
- Size
  
  28KB
- MD5
  
  4fedcbbb748b46dfcc5bf5cd3b98ee97
- SHA1
  
  1eb7e3a122e3aec420d022cf67d3b4c80073a008
- SHA256
  
  20a3abda955d8b7c3b7f3b35785ca9d6d40105c2ed39c3185f445ca29dc24087
- SHA512
  
  7a29b57ba377509acc3365f1f8f0107d56ebe6cf530c291045436c04f579f80e5345e186a49ca9669c8a9210c8cf2a564d06daaed183a8a94ba12128aa67d997
- SSDEEP
  
  768:XwcJmwfC23/wVC6VH9kUwV/cDNyuROTXOcFH8C1:Xq23/iC6VH9k6g6O7HFc2
Score

8^/10

discovery exploit
- Possible privilege escalation attempt
  exploit
- Deletes itself
- Modifies file permissions
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Permissions Modification

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryexploit

behavioral2

discoveryexploit

© 2018-2024

Terms | Privacy