79f3633ca3576e69ca937350e1231cbd378963e8c241a37a8aff51110741bc4d | Triage

Submit
Reports

Overview

overview

7

Static

static

1

EXORDUS (1).png

windows10-1703-x64

7

Sharing

General

Target

EXORDUS (1).png
Size

1.8MB
Sample

240714-29nqhaxanj
MD5

e14c40ec80c1b18c8ca2a8d71b41e527
SHA1

409bc789d3cb2f87419636f1a752103b18b08435
SHA256

79f3633ca3576e69ca937350e1231cbd378963e8c241a37a8aff51110741bc4d
SHA512

19b3fe423ff40a35d28decb538d65ff295d4bf4574c01dd12fe587e156ec0dd9a03655852666731da3f7b351900335b0af558520fd790e0fddc3db0b1287364c
SSDEEP

49152:JtpicvDApoKVKba5K9HGSHm5nECIzw+nFlu9:HTrApo2KW5KUSHm5EJFS

Score

7^/10

persistence privilege_escalation

Static task

static1

Behavioral task

behavioral1

Sample

EXORDUS (1).png

Resource

win10-20240404-es

persistence privilege_escalation

windows10-1703-x64

16 signatures

1200 seconds

Malware Config

Targets

- Target
  
  EXORDUS (1).png
- Size
  
  1.8MB
- MD5
  
  e14c40ec80c1b18c8ca2a8d71b41e527
- SHA1
  
  409bc789d3cb2f87419636f1a752103b18b08435
- SHA256
  
  79f3633ca3576e69ca937350e1231cbd378963e8c241a37a8aff51110741bc4d
- SHA512
  
  19b3fe423ff40a35d28decb538d65ff295d4bf4574c01dd12fe587e156ec0dd9a03655852666731da3f7b351900335b0af558520fd790e0fddc3db0b1287364c
- SSDEEP
  
  49152:JtpicvDApoKVKba5K9HGSHm5nECIzw+nFlu9:HTrApo2KW5KUSHm5EJFS
Score

7^/10

persistence privilege_escalation
- Executes dropped EXE
- Loads dropped DLL
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Accessibility Features

Privilege Escalation

Event Triggered Execution

Accessibility Features

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

persistenceprivilege_escalation

© 2018-2024

Terms | Privacy