General

  • Target

    4a5aaf695c0e559b0ab5baecc6250f6f

  • Size

    672KB

  • Sample

    240108-ebenlsbeh2

  • MD5

    4a5aaf695c0e559b0ab5baecc6250f6f

  • SHA1

    19a591071d6a8a93a4922cc2dd093ba9ed83e4ab

  • SHA256

    060fe73181c1e35942416605b1b93a1e255d63f3654410110ed23e672dcf8779

  • SHA512

    6abb19339410d0cc1dbea5cdc8a155b9e35920bb0c103b4c5ba4b3069227f4800b548d826b8d4d9dc0095d24df6431a6965243eb706a8d4b0ca663d76fb12345

  • SSDEEP

    12288:ITFHK/UqgqwAyds2YgkM/7E1UwgnP5BINGIVhNDCMA1CNLQPvKT8i4doFSRIFuU:IBqM5RAq9YrUfYbDCMA1CN8PvKT8i4dv

Score
10/10

Malware Config

Targets

    • Target

      4a5aaf695c0e559b0ab5baecc6250f6f

    • Size

      672KB

    • MD5

      4a5aaf695c0e559b0ab5baecc6250f6f

    • SHA1

      19a591071d6a8a93a4922cc2dd093ba9ed83e4ab

    • SHA256

      060fe73181c1e35942416605b1b93a1e255d63f3654410110ed23e672dcf8779

    • SHA512

      6abb19339410d0cc1dbea5cdc8a155b9e35920bb0c103b4c5ba4b3069227f4800b548d826b8d4d9dc0095d24df6431a6965243eb706a8d4b0ca663d76fb12345

    • SSDEEP

      12288:ITFHK/UqgqwAyds2YgkM/7E1UwgnP5BINGIVhNDCMA1CNLQPvKT8i4doFSRIFuU:IBqM5RAq9YrUfYbDCMA1CN8PvKT8i4dv

    Score
    10/10
    • UAC bypass

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

    • Checks whether UAC is enabled

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks