39ee2140ca5463797756ba5336626a6562f411dc931ac205cededbce2b6f7528 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

39ee2140ca5463797756ba5336626a6562f411dc931ac205cededbce2b6f7528
Size

136KB
Sample

240806-ze43wstcrc
MD5

38694d0a92fcaa1e7603a5b2eb9cc3a3
SHA1

7b05ab63a36c7e2aa73b09a4b7e76e49c6c61752
SHA256

39ee2140ca5463797756ba5336626a6562f411dc931ac205cededbce2b6f7528
SHA512

52245f294a5e91006322541eedfec0e0622e4453ea126bb80ba20065794c51e1326551a4813df360afacf751b759e8f5d7b72945e520256f62bea5b1b354c136
SSDEEP

3072:q99X4ATRtqdEY82XLT79O6W/0aC0VrETTrDFzH38dkjJZrQ:E9ZtqqY82X3RObR4frxzsdkjJC

Score

8^/10

discovery persistence privilege_escalation

Malware Config

Targets

- Target
  
  39ee2140ca5463797756ba5336626a6562f411dc931ac205cededbce2b6f7528
- Size
  
  136KB
- MD5
  
  38694d0a92fcaa1e7603a5b2eb9cc3a3
- SHA1
  
  7b05ab63a36c7e2aa73b09a4b7e76e49c6c61752
- SHA256
  
  39ee2140ca5463797756ba5336626a6562f411dc931ac205cededbce2b6f7528
- SHA512
  
  52245f294a5e91006322541eedfec0e0622e4453ea126bb80ba20065794c51e1326551a4813df360afacf751b759e8f5d7b72945e520256f62bea5b1b354c136
- SSDEEP
  
  3072:q99X4ATRtqdEY82XLT79O6W/0aC0VrETTrDFzH38dkjJZrQ:E9ZtqqY82X3RObR4frxzsdkjJC
Score

8^/10

discovery persistence privilege_escalation
- Event Triggered Execution: AppInit DLLs
  Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
  persistence privilege_escalation
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

AppInit DLLs

Privilege Escalation

Event Triggered Execution

AppInit DLLs

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceprivilege_escalation

behavioral2

discoverypersistenceprivilege_escalation