Overview

overview

7

Static

static

3

grpcurl.exe

windows10-2004-x64

7

Resubmissions

20-06-2024 14:53

240620-r9q6hsxenk 3

20-06-2024 14:48

240620-r6w8csshme 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    grpcurl.exe

  • Size

    23.9MB

  • Sample

    240620-r6w8csshme

  • MD5

    864681c29b610c270bd084572fc155b4

  • SHA1

    fcac34ac4b4e497d2a28e1040c41eb4ca1837123

  • SHA256

    d664a97a4c730f72f7b0d79d9f6a98433ef0c41510674da48c399cec3a76251d

  • SHA512

    976a8bb66618f5b989c34d1e10d4d7706240afd1e234c7dbcd10a1bdaf7e6aaaa654f061a2b0c42fbbfd23f62aae0b8494500de28d302cd13d9a72c69a76e2fb

  • SSDEEP

    98304:1Fkn6adyS0Pzukra2bntWYqnRSwLOr9D7eeclCjglLERcUDVhTyLPuWmwd:bkazR22bntWYM/Orc+fR0LPuWmwd

Score
7/10
persistenceprivilege_escalation

Malware Config

Targets

    • Target

      grpcurl.exe

    • Size

      23.9MB

    • MD5

      864681c29b610c270bd084572fc155b4

    • SHA1

      fcac34ac4b4e497d2a28e1040c41eb4ca1837123

    • SHA256

      d664a97a4c730f72f7b0d79d9f6a98433ef0c41510674da48c399cec3a76251d

    • SHA512

      976a8bb66618f5b989c34d1e10d4d7706240afd1e234c7dbcd10a1bdaf7e6aaaa654f061a2b0c42fbbfd23f62aae0b8494500de28d302cd13d9a72c69a76e2fb

    • SSDEEP

      98304:1Fkn6adyS0Pzukra2bntWYqnRSwLOr9D7eeclCjglLERcUDVhTyLPuWmwd:bkazR22bntWYM/Orc+fR0LPuWmwd

    Score
    7/10
    persistenceprivilege_escalation

    • Event Triggered Execution: Component Object Model Hijacking

      Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.

      persistenceprivilege_escalation

    • Modifies system executable filetype association

      persistence
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks