General
-
Target
cff14221826e32b981cda080fc304cfa9b5396e5e8c57376a2a48083a2961892
-
Size
4.3MB
-
Sample
240218-lktx8agh56
-
MD5
935ad276f499068559ef74a296806697
-
SHA1
ef02771988e9ddf5b6e08a400c3ac45370fdf244
-
SHA256
cff14221826e32b981cda080fc304cfa9b5396e5e8c57376a2a48083a2961892
-
SHA512
175033672c159c76a1a71339d82c8c7869ce5a70daeee7906c7fb0ef57db7061b252489f832cb55d90dc918a1aeb6da67752cd6143bf1cd6b6d305000d420986
-
SSDEEP
49152:fggggM3woN+tONHK+XtndAwVJbYd1ZvL2KP/hRvuRy2lz:CwVOZPdiwVJcoghJ
Static task
static1
Behavioral task
behavioral1
Sample
cff14221826e32b981cda080fc304cfa9b5396e5e8c57376a2a48083a2961892.exe
Resource
win7-20231215-en
Malware Config
Extracted
sality
http://89.119.67.154/testo5/
http://kukutrustnet777.info/home.gif
http://kukutrustnet888.info/home.gif
http://kukutrustnet987.info/home.gif
Targets
-
-
Target
cff14221826e32b981cda080fc304cfa9b5396e5e8c57376a2a48083a2961892
-
Size
4.3MB
-
MD5
935ad276f499068559ef74a296806697
-
SHA1
ef02771988e9ddf5b6e08a400c3ac45370fdf244
-
SHA256
cff14221826e32b981cda080fc304cfa9b5396e5e8c57376a2a48083a2961892
-
SHA512
175033672c159c76a1a71339d82c8c7869ce5a70daeee7906c7fb0ef57db7061b252489f832cb55d90dc918a1aeb6da67752cd6143bf1cd6b6d305000d420986
-
SSDEEP
49152:fggggM3woN+tONHK+XtndAwVJbYd1ZvL2KP/hRvuRy2lz:CwVOZPdiwVJcoghJ
-
Modifies firewall policy service
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Create or Modify System Process
1Windows Service
1