General

  • Target

    Install.exe

  • Size

    14.2MB

  • Sample

    230617-zrq2ssce9y

  • MD5

    c4574e086153b5060237add2140c296c

  • SHA1

    1e74db56f4402a6c0cd3b1cb47e2bcd65791e661

  • SHA256

    42e2ae6a16ce8494bf9209506c7fecc652ba841ec1cb1ddebcdd0908aa98222e

  • SHA512

    bbf13adedecaa55cc453734bd3c38cd60ab40baad8736118bea0b4fc52725e5e133cc64f1b6a8c5f9451786036b7933b6e531cdc4e866fb64edfbf0d46de21c1

  • SSDEEP

    196608:jbcUG4raKu24YY7HVT4hV0AD6QgqKRgXabcUG4raKu24YY7HVT4hV0AD6QgqKRgX:RmKr4YYH+EUWpgXAmKr4YYH+EUWpgX

Score
10/10

Malware Config

Targets

    • Target

      Install.exe

    • Size

      14.2MB

    • MD5

      c4574e086153b5060237add2140c296c

    • SHA1

      1e74db56f4402a6c0cd3b1cb47e2bcd65791e661

    • SHA256

      42e2ae6a16ce8494bf9209506c7fecc652ba841ec1cb1ddebcdd0908aa98222e

    • SHA512

      bbf13adedecaa55cc453734bd3c38cd60ab40baad8736118bea0b4fc52725e5e133cc64f1b6a8c5f9451786036b7933b6e531cdc4e866fb64edfbf0d46de21c1

    • SSDEEP

      196608:jbcUG4raKu24YY7HVT4hV0AD6QgqKRgXabcUG4raKu24YY7HVT4hV0AD6QgqKRgX:RmKr4YYH+EUWpgXAmKr4YYH+EUWpgX

    Score
    10/10
    • UAC bypass

    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v6

Tasks