f865da650d899ec01d363f00f013e46991d163c6ea2d33748be54172206a04a2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f865da650d899ec01d363f00f013e46991d163c6ea2d33748be54172206a04a2N
Size

177KB
Sample

240930-tk2xtstfrp
MD5

57a46419a39a8446b51224ad8f3af170
SHA1

1f0c84497887dfc1686b373521a0571ed5cf7d28
SHA256

f865da650d899ec01d363f00f013e46991d163c6ea2d33748be54172206a04a2
SHA512

0c5f76d63eb921cebb1fea32ee2a2508b9bb7fa1b7dd3f31f6b086c5d8b82bf5aac00262c946cf51f41af2e241168492b2b4dde1051a3339656438ac9d2c1216
SSDEEP

3072:YmX+4E31UUnIkiczVmcynqIzvLVMaq6rdXVoFRzS:k4E31UUnIk5s1zvLq6r9t

Score

8^/10

discovery persistence privilege_escalation

Malware Config

Targets

- Target
  
  f865da650d899ec01d363f00f013e46991d163c6ea2d33748be54172206a04a2N
- Size
  
  177KB
- MD5
  
  57a46419a39a8446b51224ad8f3af170
- SHA1
  
  1f0c84497887dfc1686b373521a0571ed5cf7d28
- SHA256
  
  f865da650d899ec01d363f00f013e46991d163c6ea2d33748be54172206a04a2
- SHA512
  
  0c5f76d63eb921cebb1fea32ee2a2508b9bb7fa1b7dd3f31f6b086c5d8b82bf5aac00262c946cf51f41af2e241168492b2b4dde1051a3339656438ac9d2c1216
- SSDEEP
  
  3072:YmX+4E31UUnIkiczVmcynqIzvLVMaq6rdXVoFRzS:k4E31UUnIk5s1zvLq6r9t
Score

8^/10

discovery persistence privilege_escalation
- Event Triggered Execution: AppInit DLLs
  Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
  persistence privilege_escalation
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

AppInit DLLs

Privilege Escalation

Event Triggered Execution

AppInit DLLs

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceprivilege_escalation

behavioral2

discoverypersistenceprivilege_escalation