Overview

overview

7

Static

static

7

rufus-4.0.exe

windows7-x64

7

rufus-4.0.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    rufus-4.0.exe

  • Size

    1.3MB

  • Sample

    230526-m42b3sff4t

  • MD5

    3855aaa9b3c3632acee05508966072c0

  • SHA1

    f165233f7d4ac46b1150eef6e9d1ff16d2b496a0

  • SHA256

    bfecf4dcf1a63d8b64b900906102edf666642316291c9bba42eb0fb9c7bccbd6

  • SHA512

    dc93938623bfb168b27fbe2475df1838b75b6655fa8816c058f64c8dd7803679e7bab7c8b5da07f2eb9436da2e84973253e7509def261f0f7dcb638684769eba

  • SSDEEP

    24576:0bOnkCgRFDO7lRDdr3/6Py8mPLTi6ucqzQ1CtDQJj0/04dr+C3OZ2wQP:8OkCqhGl9Lu6ucqcZadKb2R

Score
7/10
evasiontrojanupx

Malware Config

Targets

    • Target

      rufus-4.0.exe

    • Size

      1.3MB

    • MD5

      3855aaa9b3c3632acee05508966072c0

    • SHA1

      f165233f7d4ac46b1150eef6e9d1ff16d2b496a0

    • SHA256

      bfecf4dcf1a63d8b64b900906102edf666642316291c9bba42eb0fb9c7bccbd6

    • SHA512

      dc93938623bfb168b27fbe2475df1838b75b6655fa8816c058f64c8dd7803679e7bab7c8b5da07f2eb9436da2e84973253e7509def261f0f7dcb638684769eba

    • SSDEEP

      24576:0bOnkCgRFDO7lRDdr3/6Py8mPLTi6ucqzQ1CtDQJj0/04dr+C3OZ2wQP:8OkCqhGl9Lu6ucqcZadKb2R

    Score
    7/10
    upxevasiontrojan

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks whether UAC is enabled

      evasiontrojan

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

2
T1082

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks