Overview

overview

8

Static

static

3

02afcbabd3...0N.exe

windows7-x64

8

02afcbabd3...0N.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    02afcbabd3880109b28b72bd5658a100N.exe

  • Size

    137KB

  • Sample

    240825-h3wyrasbje

  • MD5

    02afcbabd3880109b28b72bd5658a100

  • SHA1

    589957d6bfb05f0b66d6e3c8f03f54fcf4a5de27

  • SHA256

    3994125c26a0126153f501eb87fea4a3b40892bd532dc9af09ab88081b29da06

  • SHA512

    d68ad95fc62d2419aec2ca936792a16628b1eb9b480dd3fe341d2fa84c2cf7debf191cfcd59bd8943f57d55035364878e5f14a29c4c028a5f4bc425f7bb232d1

  • SSDEEP

    3072:9/eOrj+K1j+stAo7jpD73KvTYEIQkeJM+:FBlAQd3eCQTJz

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      02afcbabd3880109b28b72bd5658a100N.exe

    • Size

      137KB

    • MD5

      02afcbabd3880109b28b72bd5658a100

    • SHA1

      589957d6bfb05f0b66d6e3c8f03f54fcf4a5de27

    • SHA256

      3994125c26a0126153f501eb87fea4a3b40892bd532dc9af09ab88081b29da06

    • SHA512

      d68ad95fc62d2419aec2ca936792a16628b1eb9b480dd3fe341d2fa84c2cf7debf191cfcd59bd8943f57d55035364878e5f14a29c4c028a5f4bc425f7bb232d1

    • SSDEEP

      3072:9/eOrj+K1j+stAo7jpD73KvTYEIQkeJM+:FBlAQd3eCQTJz

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks