5c46413866abed11483ea2743b55d94f3f24ed01bfdfb5db484198c4d7ec9bb0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8c43005d24fda036eb40238422a15ec0N.exe
Size

140KB
Sample

240807-jvv7xsybmb
MD5

8c43005d24fda036eb40238422a15ec0
SHA1

4d1ad50371d9aa9a82606216ec795fac91952cfb
SHA256

5c46413866abed11483ea2743b55d94f3f24ed01bfdfb5db484198c4d7ec9bb0
SHA512

d2223e88bcd6d8960adb5ecf5cd20e4bbeca9e1b62634c38c320b41788602ad39c1e60e166a61e5f88d56180e6051e0739f7ac099816d3fb3f715324224ec576
SSDEEP

3072:FC+b/xEwBxygI9vj0AT1smXA3HizrYZ6oXHqBNI5xJ:k+LxBxULrsr3CffoXKBy5T

Score

8^/10

discovery persistence privilege_escalation

Malware Config

Targets

- Target
  
  8c43005d24fda036eb40238422a15ec0N.exe
- Size
  
  140KB
- MD5
  
  8c43005d24fda036eb40238422a15ec0
- SHA1
  
  4d1ad50371d9aa9a82606216ec795fac91952cfb
- SHA256
  
  5c46413866abed11483ea2743b55d94f3f24ed01bfdfb5db484198c4d7ec9bb0
- SHA512
  
  d2223e88bcd6d8960adb5ecf5cd20e4bbeca9e1b62634c38c320b41788602ad39c1e60e166a61e5f88d56180e6051e0739f7ac099816d3fb3f715324224ec576
- SSDEEP
  
  3072:FC+b/xEwBxygI9vj0AT1smXA3HizrYZ6oXHqBNI5xJ:k+LxBxULrsr3CffoXKBy5T
Score

8^/10

discovery persistence privilege_escalation
- Event Triggered Execution: AppInit DLLs
  Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
  persistence privilege_escalation
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

AppInit DLLs

Privilege Escalation

Event Triggered Execution

AppInit DLLs

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceprivilege_escalation

behavioral2

discoverypersistenceprivilege_escalation