General
-
Target
259b71d85fc0196e3d09824389d5dd0f8a01f828fcdcdb58ba48c49a5e294a9e
-
Size
2.2MB
-
Sample
240218-e6m88sdg81
-
MD5
829febf4747e48a347fec2909421ada7
-
SHA1
17724e3a02a6d587b33093aab2c6709b9fe94586
-
SHA256
259b71d85fc0196e3d09824389d5dd0f8a01f828fcdcdb58ba48c49a5e294a9e
-
SHA512
af905caf6001518229726fe81838d7fce2578d8a3e5120be10aa19c8a298b88df528c16df1676e73a796af918aff85d1a90a398b2a4f0c88956c143dae38ea91
-
SSDEEP
49152:hKBMBggggMAQAVas9AzP9u6KyXVCYZj+KP/hsVfRfQ+tWC7v:hQPAVahYbygRgh+p
Static task
static1
Behavioral task
behavioral1
Sample
259b71d85fc0196e3d09824389d5dd0f8a01f828fcdcdb58ba48c49a5e294a9e.exe
Resource
win7-20231215-en
Malware Config
Extracted
sality
http://89.119.67.154/testo5/
http://kukutrustnet777.info/home.gif
http://kukutrustnet888.info/home.gif
http://kukutrustnet987.info/home.gif
Targets
-
-
Target
259b71d85fc0196e3d09824389d5dd0f8a01f828fcdcdb58ba48c49a5e294a9e
-
Size
2.2MB
-
MD5
829febf4747e48a347fec2909421ada7
-
SHA1
17724e3a02a6d587b33093aab2c6709b9fe94586
-
SHA256
259b71d85fc0196e3d09824389d5dd0f8a01f828fcdcdb58ba48c49a5e294a9e
-
SHA512
af905caf6001518229726fe81838d7fce2578d8a3e5120be10aa19c8a298b88df528c16df1676e73a796af918aff85d1a90a398b2a4f0c88956c143dae38ea91
-
SSDEEP
49152:hKBMBggggMAQAVas9AzP9u6KyXVCYZj+KP/hsVfRfQ+tWC7v:hQPAVahYbygRgh+p
-
Modifies firewall policy service
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Create or Modify System Process
1Windows Service
1