f0d8fa3db3127abcded89abbf13f8d3c0071169618a0340570aa9b389034f176 | Triage

Sharing

General

Target

f0d8fa3db3127abcded89abbf13f8d3c0071169618a0340570aa9b389034f176
Size

700KB
Sample

240915-cxp1cs1dnm
MD5

a3f150cec06c4434460ef680417af1ac
SHA1

a32958417d97509be368cc48bab8d9a1c8a9050d
SHA256

f0d8fa3db3127abcded89abbf13f8d3c0071169618a0340570aa9b389034f176
SHA512

b7354b772dbc6c137d35aca2e9094e013d05a624a1a71f4b169edfb07e4212369ef9fd78f23d996ec2c2b3a1e4a4fd158b5e60e347a9ccba35e07cba97e64c80
SSDEEP

12288:PpatAdcuir6DuAstdFwBgHaaRRZbv4XqTC6Ri3JRFrt6rd6F1tuuuuuuYGpK7bA+:Bat2cuir6K7tdFJlbv2qTD0bFrBFbuuD

Score

7^/10

persistence privilege_escalation

Malware Config

Targets

- Target
  
  f0d8fa3db3127abcded89abbf13f8d3c0071169618a0340570aa9b389034f176
- Size
  
  700KB
- MD5
  
  a3f150cec06c4434460ef680417af1ac
- SHA1
  
  a32958417d97509be368cc48bab8d9a1c8a9050d
- SHA256
  
  f0d8fa3db3127abcded89abbf13f8d3c0071169618a0340570aa9b389034f176
- SHA512
  
  b7354b772dbc6c137d35aca2e9094e013d05a624a1a71f4b169edfb07e4212369ef9fd78f23d996ec2c2b3a1e4a4fd158b5e60e347a9ccba35e07cba97e64c80
- SSDEEP
  
  12288:PpatAdcuir6DuAstdFwBgHaaRRZbv4XqTC6Ri3JRFrt6rd6F1tuuuuuuYGpK7bA+:Bat2cuir6K7tdFJlbv2qTD0bFrBFbuuD
Score

7^/10

persistence privilege_escalation
- Event Triggered Execution: Component Object Model Hijacking
  Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.
  persistence privilege_escalation
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Component Object Model Hijacking

Privilege Escalation

Event Triggered Execution

Component Object Model Hijacking

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

persistenceprivilege_escalation