70759c183188aeae174ceec9f0f7e3ff317a96c305aacc41e2ad851a1df8e366 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PPPwnGo.exe
Size

108KB
Sample

240811-rvv6xstdkq
MD5

1f2e533441f0511252c4505c10143463
SHA1

3a2258599939cc746bda3dc88a23ee7186cfb828
SHA256

70759c183188aeae174ceec9f0f7e3ff317a96c305aacc41e2ad851a1df8e366
SHA512

b696b7cd61f29da2e695e69730f7f55f8cc20dbf0bbb9fd6e6ed419f8c63a29eb066698c647fd1a0ef2099c53d596a5095cc3fa5cd7fcef0adcd02bc6a5856e5
SSDEEP

3072:6hgVVawfpYkwYkphLiew/s3/0nSRuqsy5gW:bVVawf+kwYkno/Q/0nSgtE

Score

3^/10

persistence privilege_escalation

Malware Config

Targets

- Target
  
  PPPwnGo.exe
- Size
  
  108KB
- MD5
  
  1f2e533441f0511252c4505c10143463
- SHA1
  
  3a2258599939cc746bda3dc88a23ee7186cfb828
- SHA256
  
  70759c183188aeae174ceec9f0f7e3ff317a96c305aacc41e2ad851a1df8e366
- SHA512
  
  b696b7cd61f29da2e695e69730f7f55f8cc20dbf0bbb9fd6e6ed419f8c63a29eb066698c647fd1a0ef2099c53d596a5095cc3fa5cd7fcef0adcd02bc6a5856e5
- SSDEEP
  
  3072:6hgVVawfpYkwYkphLiew/s3/0nSRuqsy5gW:bVVawf+kwYkno/Q/0nSgtE
Score

3^/10

persistence privilege_escalation
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Netsh Helper DLL

Privilege Escalation

Event Triggered Execution

Netsh Helper DLL

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

persistenceprivilege_escalation