Overview

overview

8

Static

static

1

FREE MS/Co...up.dll

windows7-x64

1

FREE MS/Co...up.dll

windows10-2004-x64

1

FREE MS/add.bat

windows7-x64

8

FREE MS/add.bat

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    atw7ir (1) (1).zip

  • Size

    178KB

  • Sample

    241027-xpvk4ayken

  • MD5

    72efda3b674d39020b51ad5cada673c5

  • SHA1

    31122c6589247f0f0ecd4bc5a1134f858730af8c

  • SHA256

    6422054718a1ee57b8d427f3a3f98be47131c6b154892ac402b20dfe9554fc10

  • SHA512

    5e68f4a7f3d4432ec90305745afb50954c573f5a503176d222d2225825a7c5799183bd1e2d74cb1a15204ab3fe33d2c427535d1f155ccac11c2cdb2c4c3ba3fe

  • SSDEEP

    3072:5hXrw+UO1V3h63cw6Jnxbk6goUIq9aaHmGUz+jTzgCreVqmemwzsRK0STnhSTj9l:5ZdU4VxKEJ9MIGaTS8hqmemGTnhSmYh

Score
8/10
discoveryexploit

Malware Config

Targets

    • Target

      FREE MS/CompPkgSup.dll

    • Size

      418KB

    • MD5

      7b3ff9d8deaa8cfbde93eedc672d2239

    • SHA1

      07dba0c1024d31e834ec739d1763a2c67c4f9eeb

    • SHA256

      574decb2381f0b85df0bbd828fbb0282482a08e4230b06a6a55ca5ffef3d98da

    • SHA512

      3f1d691c2d81158d9329d6445528e92d94ab2633300be485db4400c51b4a067ce116737387bbca55c49f5f93b5eafadea2a7d531985a7855fcd56788395c6d85

    • SSDEEP

      6144:hlzvsfAIE6BqsBxX6Ys6xShIQ0PBkuDQCoq8ZyFo3:taBqJYDZQ0PBJ65wi3

    Score
    1/10
    behavioral1behavioral2

    • Target

      FREE MS/add.bat

    • Size

      496B

    • MD5

      a1378148102c610afc9c4e9aa588abce

    • SHA1

      9dfe7164f6edfb1d193c0b7cb8edc686f0e18778

    • SHA256

      9f519a91ee189e9aa040ee3940359815a47878f3ee927ae4e14a2bf08b10dfec

    • SHA512

      fe866ad466f40491b6ef3629b01a7bc491adbba8aa4267622b06ac70043db426a5f74a9c1c0aba311cfc01ced48cf5dad985bd736da3cb1383fbed1f86824a1f

    Score
    8/10
    discoveryexploit

    • Possible privilege escalation attempt

      exploit

    • Modifies file permissions

      discovery

    • Drops file in System32 directory

    behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks