d44281e2cc355bcfd174f8ada5dca1ba5001ed3faaa5acfe3883c5c60e8d2be0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d44281e2cc355bcfd174f8ada5dca1ba5001ed3faaa5acfe3883c5c60e8d2be0
Size

276KB
Sample

240706-dqzrnawhre
MD5

c002784bcba8e4f954f222e187eaf605
SHA1

db77d2d7b4ba3873ac884d22393b14faea7a17fb
SHA256

d44281e2cc355bcfd174f8ada5dca1ba5001ed3faaa5acfe3883c5c60e8d2be0
SHA512

c49e9f25af13c95959a503e8ef621bf47e09e1bb1a1e1fb0a7462054a9c03b816ac907025629b638275ff84fcd502ebd66b1b3917bfef1d836cd4da9ee0ced33
SSDEEP

6144:5ST/k0YujFn2CfBoZG3gLm5WelllPJ7ImcS:AsxujcCfOBoDN9Im5

Score

8^/10

persistence privilege_escalation

Malware Config

Targets

- Target
  
  d44281e2cc355bcfd174f8ada5dca1ba5001ed3faaa5acfe3883c5c60e8d2be0
- Size
  
  276KB
- MD5
  
  c002784bcba8e4f954f222e187eaf605
- SHA1
  
  db77d2d7b4ba3873ac884d22393b14faea7a17fb
- SHA256
  
  d44281e2cc355bcfd174f8ada5dca1ba5001ed3faaa5acfe3883c5c60e8d2be0
- SHA512
  
  c49e9f25af13c95959a503e8ef621bf47e09e1bb1a1e1fb0a7462054a9c03b816ac907025629b638275ff84fcd502ebd66b1b3917bfef1d836cd4da9ee0ced33
- SSDEEP
  
  6144:5ST/k0YujFn2CfBoZG3gLm5WelllPJ7ImcS:AsxujcCfOBoDN9Im5
Score

8^/10

persistence privilege_escalation
- Event Triggered Execution: AppInit DLLs
  Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
  persistence privilege_escalation
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

AppInit DLLs

Privilege Escalation

Event Triggered Execution

AppInit DLLs

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

persistenceprivilege_escalation

behavioral2