General
-
Target
6a1ec45a6cb41f0489a616808154173e
-
Size
468KB
-
Sample
231226-nc9ptacgb5
-
MD5
6a1ec45a6cb41f0489a616808154173e
-
SHA1
e50ea710e3a5913209c723ca8da2dbb71083ef67
-
SHA256
ef767d19eadf8cb4798a62521bc824a3fd9f13bbd454f985d61c2d55a3c6a6db
-
SHA512
7e02a2f640a39ebd01c0d0e459830435975df7a3a72f83d76298f4b9e5906165ef06124c26de96ecb3e284b09917e65acab8a8cc5057e99266eedf7f9714053e
-
SSDEEP
12288:Y7zKllVLzo6/F/K51dk+BWmv8lZtoGFLSaihrIezg:WKlrzo6/F/Ux+JFDyI
Malware Config
Targets
-
-
Target
6a1ec45a6cb41f0489a616808154173e
-
Size
468KB
-
MD5
6a1ec45a6cb41f0489a616808154173e
-
SHA1
e50ea710e3a5913209c723ca8da2dbb71083ef67
-
SHA256
ef767d19eadf8cb4798a62521bc824a3fd9f13bbd454f985d61c2d55a3c6a6db
-
SHA512
7e02a2f640a39ebd01c0d0e459830435975df7a3a72f83d76298f4b9e5906165ef06124c26de96ecb3e284b09917e65acab8a8cc5057e99266eedf7f9714053e
-
SSDEEP
12288:Y7zKllVLzo6/F/K51dk+BWmv8lZtoGFLSaihrIezg:WKlrzo6/F/Ux+JFDyI
Score10/10-
Modifies visibility of file extensions in Explorer
-
UAC bypass
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks whether UAC is enabled
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1