Overview

overview

8

Static

static

3

321019543b...0N.exe

windows7-x64

8

321019543b...0N.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    321019543bcbbb982a88a5602e7761b0N.exe

  • Size

    137KB

  • Sample

    240807-akchdsydlg

  • MD5

    321019543bcbbb982a88a5602e7761b0

  • SHA1

    0e3ca134dc42307e19844cb5a41b1c703dccddb6

  • SHA256

    92ccb2a00bde59776783b57d5c65062bc9f5bc602f6c425a4572cada093c7bf6

  • SHA512

    23557650bf20701d3db6b0a0beced44e99590c58c8365eb6c5741fadf956d3481239ac63e09eb30099455624c42cb16e01da714fefd74e6c20d57cf24f124cb5

  • SSDEEP

    3072:9/eOrj+K1j+stAo7jpD73KvTYEIQkeJMF:FBlAQd3eCQTJM

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      321019543bcbbb982a88a5602e7761b0N.exe

    • Size

      137KB

    • MD5

      321019543bcbbb982a88a5602e7761b0

    • SHA1

      0e3ca134dc42307e19844cb5a41b1c703dccddb6

    • SHA256

      92ccb2a00bde59776783b57d5c65062bc9f5bc602f6c425a4572cada093c7bf6

    • SHA512

      23557650bf20701d3db6b0a0beced44e99590c58c8365eb6c5741fadf956d3481239ac63e09eb30099455624c42cb16e01da714fefd74e6c20d57cf24f124cb5

    • SSDEEP

      3072:9/eOrj+K1j+stAo7jpD73KvTYEIQkeJMF:FBlAQd3eCQTJM

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks