Overview

overview

8

Static

static

3

471c517fb7...9N.exe

windows7-x64

8

471c517fb7...9N.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    471c517fb70d38f24e324a58d84e851bd86d2316d3302b8f485bf63e02d4aba9N

  • Size

    288KB

  • Sample

    241013-r6948awhjl

  • MD5

    2c5e6627df7cfaa69bc1f90d9a86f940

  • SHA1

    3a975a0f38a2e3784c1418eddd7825ef3bcb53e5

  • SHA256

    471c517fb70d38f24e324a58d84e851bd86d2316d3302b8f485bf63e02d4aba9

  • SHA512

    c70966b94b28cc409c9de141367c44f23f211a4092adb848b215a927decfbb0f5ec11f7c06bed23316f65d39066182d6c2f476dc10420f5e5c7f79e55e12182e

  • SSDEEP

    6144:IiV3M7tydyE7ztsY4yTr8bjeJwj2EItHp4Pl6yzh0H0xH95:Iu3URWtsYf8PemjE8h0UxH95

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      471c517fb70d38f24e324a58d84e851bd86d2316d3302b8f485bf63e02d4aba9N

    • Size

      288KB

    • MD5

      2c5e6627df7cfaa69bc1f90d9a86f940

    • SHA1

      3a975a0f38a2e3784c1418eddd7825ef3bcb53e5

    • SHA256

      471c517fb70d38f24e324a58d84e851bd86d2316d3302b8f485bf63e02d4aba9

    • SHA512

      c70966b94b28cc409c9de141367c44f23f211a4092adb848b215a927decfbb0f5ec11f7c06bed23316f65d39066182d6c2f476dc10420f5e5c7f79e55e12182e

    • SSDEEP

      6144:IiV3M7tydyE7ztsY4yTr8bjeJwj2EItHp4Pl6yzh0H0xH95:Iu3URWtsYf8PemjE8h0UxH95

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks