dd382ef6a0c1e8d920fb72f482d74826251ab97709520bc24f913cd8eb5fc839 | Triage

Resubmissions

24-02-2023 19:59

230224-yqglasae97 8

24-02-2023 19:55

230224-ynbl9sae87 8

24-02-2023 19:52

230224-ylp2waad3y 8

Sharing

General

Target

pi.txt
Size

976KB
Sample

230224-yqglasae97
MD5

e87782d11eac8d992faca76ceb940433
SHA1

ec497f9b8b0aad5fe967d0916bff266972081f50
SHA256

dd382ef6a0c1e8d920fb72f482d74826251ab97709520bc24f913cd8eb5fc839
SHA512

9cced79c2f6f800d7fa43dffc32085e1ebecaa03958053afad22d8a1cb2e86d3fc905fe3bfa05355c73f35d7608287be3d48d730b6511ef6b40b95ba2a48deef
SSDEEP

1536:6tp5GGm1PAZ8wN/BjIpFw070YlvZIu1GdVov3rPWD1DJtnCxu+Rhz78odjEy6O+T:K

Score

8^/10

discovery exploit

Malware Config

Targets

- Target
  
  pi.txt
- Size
  
  976KB
- MD5
  
  e87782d11eac8d992faca76ceb940433
- SHA1
  
  ec497f9b8b0aad5fe967d0916bff266972081f50
- SHA256
  
  dd382ef6a0c1e8d920fb72f482d74826251ab97709520bc24f913cd8eb5fc839
- SHA512
  
  9cced79c2f6f800d7fa43dffc32085e1ebecaa03958053afad22d8a1cb2e86d3fc905fe3bfa05355c73f35d7608287be3d48d730b6511ef6b40b95ba2a48deef
- SSDEEP
  
  1536:6tp5GGm1PAZ8wN/BjIpFw070YlvZIu1GdVov3rPWD1DJtnCxu+Rhz78odjEy6O+T:K
Score

8^/10

discovery exploit
- Drops file in Drivers directory
- Possible privilege escalation attempt
  exploit
- Modifies file permissions
  discovery
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Permissions Modification

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoveryexploit