General

  • Target

    Install.exe

  • Size

    7.2MB

  • Sample

    230617-zqbwgsce8z

  • MD5

    5e599340af5a05fdd8cf8354e72be4d7

  • SHA1

    263d841e3f2f180a56957ec49be6aa8922f480ef

  • SHA256

    d6acc6f846210c9425a51c4c5dd5904b0b195f3b0a86160ed502ae878dffa5aa

  • SHA512

    fda255b0a7702585ab69d83fa441cdce899936efe864d04df2237f1e2e8b146fa976a81e5522ea9bb94883ccf2a6bcc30e97ca5d378f94eee9b3c1d0ec191467

  • SSDEEP

    196608:ebcUG4raKu24YY7HVT4hV0AD6QgqKRgX:smKr4YYH+EUWpgX

Score
10/10

Malware Config

Targets

    • Target

      Install.exe

    • Size

      7.2MB

    • MD5

      5e599340af5a05fdd8cf8354e72be4d7

    • SHA1

      263d841e3f2f180a56957ec49be6aa8922f480ef

    • SHA256

      d6acc6f846210c9425a51c4c5dd5904b0b195f3b0a86160ed502ae878dffa5aa

    • SHA512

      fda255b0a7702585ab69d83fa441cdce899936efe864d04df2237f1e2e8b146fa976a81e5522ea9bb94883ccf2a6bcc30e97ca5d378f94eee9b3c1d0ec191467

    • SSDEEP

      196608:ebcUG4raKu24YY7HVT4hV0AD6QgqKRgX:smKr4YYH+EUWpgX

    Score
    10/10
    • UAC bypass

    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v6

Tasks