Task
task1
Task
task2
General
-
Target
Exes_e3083483121cd288264f8c5624fb2cd1.1
-
Sample
190729-lbr7xchjkn
-
SHA256
114ccacb7ca57c01f3540611fdf49e68416544da8d8077f5896434a4b71b01dd
Score
N/A
Malware Config
Signatures
-
Drops file in system dir 2 IoCs
description C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngenservicelock.dat C:\Windows\Microsoft.NET\Framework\v4.0.30319\ngenrootstorelock.dat -
Suspicious use of AdjustPrivilegeToken 1 TTPs 1 IoCs
description Token: SeShutdownPrivilege -
Drops file in system dir 2 IoCs
description C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngenservicelock.dat C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngenrootstorelock.dat -
Suspicious use of AdjustPrivilegeToken 1 TTPs 1 IoCs
description Token: SeShutdownPrivilege