General
-
Target
111a409e77bd689eaa73d3edd165ed1c
-
Size
424KB
-
Sample
231225-j2gm4shadp
-
MD5
111a409e77bd689eaa73d3edd165ed1c
-
SHA1
29a44fdc4171dbf631e88026e4de921ea8e4597d
-
SHA256
54c34744eb0f598dcd5e0d3a08b2e68d3d83dfa9f74c9d307e823e9d7e3d768b
-
SHA512
dc94001b9ce4e89a5e4fd531eee4c1de9a797d792ee1e4a5fd622de6a8a7bb98ffe467e05d2bf8d2b056454d952ba64c9fd1a7c2d2bcef2ee929aa7949f5b84c
-
SSDEEP
12288:IMUVMCXVezlmi3lHbuad+sp/1K9wb+Ha02MB:1UVMcqlmi9bxdrp9o6Oh2
Malware Config
Targets
-
-
Target
111a409e77bd689eaa73d3edd165ed1c
-
Size
424KB
-
MD5
111a409e77bd689eaa73d3edd165ed1c
-
SHA1
29a44fdc4171dbf631e88026e4de921ea8e4597d
-
SHA256
54c34744eb0f598dcd5e0d3a08b2e68d3d83dfa9f74c9d307e823e9d7e3d768b
-
SHA512
dc94001b9ce4e89a5e4fd531eee4c1de9a797d792ee1e4a5fd622de6a8a7bb98ffe467e05d2bf8d2b056454d952ba64c9fd1a7c2d2bcef2ee929aa7949f5b84c
-
SSDEEP
12288:IMUVMCXVezlmi3lHbuad+sp/1K9wb+Ha02MB:1UVMcqlmi9bxdrp9o6Oh2
Score10/10-
UAC bypass
-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Windows security modification
-
Adds Run key to start application
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1