72bb16b9c12138cdacbd260e8176acd8d2e4dee422c384e7251ffefa04cf6fce | Triage

Submit
Reports

Overview

overview

8

Static

static

72bb16b9c1...ce.exe

windows7-x64

8

72bb16b9c1...ce.exe

windows10-2004-x64

8

Sharing

General

Target

72bb16b9c12138cdacbd260e8176acd8d2e4dee422c384e7251ffefa04cf6fce
Size

26KB
Sample

221127-r84p8aaf3v
MD5

2f900ad4ecd1726c9001bc41a42073cc
SHA1

98eda90f954cd3dc68fe58e8b9738487256e66c3
SHA256

72bb16b9c12138cdacbd260e8176acd8d2e4dee422c384e7251ffefa04cf6fce
SHA512

bb99fba927b802eb25ab0672b2eeefdfb56c18e763e7b202ef6bd0cc7a824583f00b6df5f947bd6fce23be957f4af0e133fbfefc6f7c553356c460badb19735a
SSDEEP

384:fiwLXY3y9eHBgVmtCFbxRbA+4okzNC6ybGMhTKNljsq+Vhnka0+itIY/JLjP4L3W:fixCg6tdRbA+4CBbhKNWqc++it7R23W

Score

8^/10

discovery exploit

Static task

static1

Behavioral task

behavioral1

Sample

72bb16b9c12138cdacbd260e8176acd8d2e4dee422c384e7251ffefa04cf6fce.exe

Resource

win7-20221111-en

discovery exploit

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

72bb16b9c12138cdacbd260e8176acd8d2e4dee422c384e7251ffefa04cf6fce.exe

Resource

win10v2004-20220812-en

discovery exploit

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  72bb16b9c12138cdacbd260e8176acd8d2e4dee422c384e7251ffefa04cf6fce
- Size
  
  26KB
- MD5
  
  2f900ad4ecd1726c9001bc41a42073cc
- SHA1
  
  98eda90f954cd3dc68fe58e8b9738487256e66c3
- SHA256
  
  72bb16b9c12138cdacbd260e8176acd8d2e4dee422c384e7251ffefa04cf6fce
- SHA512
  
  bb99fba927b802eb25ab0672b2eeefdfb56c18e763e7b202ef6bd0cc7a824583f00b6df5f947bd6fce23be957f4af0e133fbfefc6f7c553356c460badb19735a
- SSDEEP
  
  384:fiwLXY3y9eHBgVmtCFbxRbA+4okzNC6ybGMhTKNljsq+Vhnka0+itIY/JLjP4L3W:fixCg6tdRbA+4CBbhKNWqc++it7R23W
Score

8^/10

discovery exploit
- Possible privilege escalation attempt
  exploit
- Deletes itself
- Modifies file permissions
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Permissions Modification

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryexploit

behavioral2

discoveryexploit

© 2018-2024

Terms | Privacy