General
-
Target
0049a6816b22a8376997bfa69307d859
-
Size
681KB
-
Sample
231224-rl4rpsfdb7
-
MD5
0049a6816b22a8376997bfa69307d859
-
SHA1
5a7d537628c15d431199378fed94f3ead80b01e3
-
SHA256
00464afe580fb268dc180a7e66fcb09fc2ea1fd945a07289336a52215a7270a0
-
SHA512
e3a74a01773d229bda47af380aa6a846f2db6d96676b435efddda86354250b12cbb26aadad9bc4060b3391710275a77303694f8d63b9ab8488c81e4c06fb6a8d
-
SSDEEP
12288:pHYdTiO8/Ui1T71MKSErYwzSg0M0VmnXhTO2Ap:hYv8jxMKjrdzv0MEmnxTO
Malware Config
Targets
-
-
Target
0049a6816b22a8376997bfa69307d859
-
Size
681KB
-
MD5
0049a6816b22a8376997bfa69307d859
-
SHA1
5a7d537628c15d431199378fed94f3ead80b01e3
-
SHA256
00464afe580fb268dc180a7e66fcb09fc2ea1fd945a07289336a52215a7270a0
-
SHA512
e3a74a01773d229bda47af380aa6a846f2db6d96676b435efddda86354250b12cbb26aadad9bc4060b3391710275a77303694f8d63b9ab8488c81e4c06fb6a8d
-
SSDEEP
12288:pHYdTiO8/Ui1T71MKSErYwzSg0M0VmnXhTO2Ap:hYv8jxMKjrdzv0MEmnxTO
Score10/10-
UAC bypass
-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Windows security modification
-
Adds Run key to start application
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1