e374453b537ff2927e2a558c82326d1714b9e24f9977287c079ffb19ea8f1834 | Triage

Sharing

General

Target

502cadf79cbea7797ec7ef383f12f130N.exe
Size

180KB
Sample

240726-y64e1awbpb
MD5

502cadf79cbea7797ec7ef383f12f130
SHA1

dc5f398dbe7cd7455711566432292781ab61f39e
SHA256

e374453b537ff2927e2a558c82326d1714b9e24f9977287c079ffb19ea8f1834
SHA512

a50bc3387f3de7e2e329caa182631c07d51c967e078071ed0b28525803f8baf749ac6bf4dc4a3b98f00bc67ff28ad185eb1cab97ff46946989d7f8d50e602462
SSDEEP

3072:6chyinW3ky2yCvryQUFrUUOxjnw89JnszQcJdXo:ain4kB+ZUUOxF52dXo

Score

8^/10

discovery persistence privilege_escalation

Malware Config

Targets

- Target
  
  502cadf79cbea7797ec7ef383f12f130N.exe
- Size
  
  180KB
- MD5
  
  502cadf79cbea7797ec7ef383f12f130
- SHA1
  
  dc5f398dbe7cd7455711566432292781ab61f39e
- SHA256
  
  e374453b537ff2927e2a558c82326d1714b9e24f9977287c079ffb19ea8f1834
- SHA512
  
  a50bc3387f3de7e2e329caa182631c07d51c967e078071ed0b28525803f8baf749ac6bf4dc4a3b98f00bc67ff28ad185eb1cab97ff46946989d7f8d50e602462
- SSDEEP
  
  3072:6chyinW3ky2yCvryQUFrUUOxjnw89JnszQcJdXo:ain4kB+ZUUOxF52dXo
Score

8^/10

discovery persistence privilege_escalation
- Event Triggered Execution: AppInit DLLs
  Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
  persistence privilege_escalation
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

AppInit DLLs

Privilege Escalation

Event Triggered Execution

AppInit DLLs

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceprivilege_escalation

behavioral2

discoverypersistenceprivilege_escalation