25ca3b510f4fcf9ff68a842b97ce57ea17d3784337012b3e7c674b9ff9b01bca | Triage

Submit
Reports

Overview

overview

8

Static

static

25ca3b510f...ca.exe

windows7-x64

8

25ca3b510f...ca.exe

windows10-2004-x64

8

Sharing

General

Target

25ca3b510f4fcf9ff68a842b97ce57ea17d3784337012b3e7c674b9ff9b01bca
Size

29KB
Sample

221123-vyevwsdc6t
MD5

c196d786a061ac05f9545dd5824d7a62
SHA1

99c1bd4c85d1276fd4ddb502e924b0f65a0449a5
SHA256

25ca3b510f4fcf9ff68a842b97ce57ea17d3784337012b3e7c674b9ff9b01bca
SHA512

dad86eba441ffbd832873fdb24e7631bcba270d5b809ed82b757d9e35a2d6b7cc32965c73ff91efd94c4db08e795117148ebfe917384dd6c8ec28652dcc5acbb
SSDEEP

384:YzdDhvRpxaD2uq96bcuZr775Lz71oQXDX4CcqhY0IZFk+Sde3nPG3CRJrG8O7kB:iZod+atLzxoaHcqpIkPI+Ui8kkB

Score

8^/10

discovery exploit

Static task

static1

Behavioral task

behavioral1

Sample

25ca3b510f4fcf9ff68a842b97ce57ea17d3784337012b3e7c674b9ff9b01bca.exe

Resource

win7-20220812-en

discovery exploit

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

25ca3b510f4fcf9ff68a842b97ce57ea17d3784337012b3e7c674b9ff9b01bca.exe

Resource

win10v2004-20220812-en

discovery exploit

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  25ca3b510f4fcf9ff68a842b97ce57ea17d3784337012b3e7c674b9ff9b01bca
- Size
  
  29KB
- MD5
  
  c196d786a061ac05f9545dd5824d7a62
- SHA1
  
  99c1bd4c85d1276fd4ddb502e924b0f65a0449a5
- SHA256
  
  25ca3b510f4fcf9ff68a842b97ce57ea17d3784337012b3e7c674b9ff9b01bca
- SHA512
  
  dad86eba441ffbd832873fdb24e7631bcba270d5b809ed82b757d9e35a2d6b7cc32965c73ff91efd94c4db08e795117148ebfe917384dd6c8ec28652dcc5acbb
- SSDEEP
  
  384:YzdDhvRpxaD2uq96bcuZr775Lz71oQXDX4CcqhY0IZFk+Sde3nPG3CRJrG8O7kB:iZod+atLzxoaHcqpIkPI+Ui8kkB
Score

8^/10

discovery exploit
- Possible privilege escalation attempt
  exploit
- Deletes itself
- Modifies file permissions
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Permissions Modification

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryexploit

behavioral2

discoveryexploit

© 2018-2024

Terms | Privacy