General
-
Target
7e23b9a01ad6bdf3e6e1bd0edce01ad7862bb73d4bd78fb8df2077e8e95d3040
-
Size
2.4MB
-
Sample
240218-szalfscc28
-
MD5
a4bc8d274cfe5282af12e92579c7a163
-
SHA1
a3d48d1b8701e463618234ca95ef6d4f56f990b5
-
SHA256
7e23b9a01ad6bdf3e6e1bd0edce01ad7862bb73d4bd78fb8df2077e8e95d3040
-
SHA512
4e22aaf0952c7fd505c16f73e469fedb06191ffaa1a8d2de8881dbbcf528bab020b2f7ca9a5d447b9ff7bdba82219b4c15b98ad09fc7a44f37dd5d546e2d53e5
-
SSDEEP
49152:LtiggggMZybOEfM77Ujc6vp5KQ6Ux/WJ0KP/hk8IQgZmthmzT7WNi:Bxy0AJpEQ6ou0gh9IQm
Static task
static1
Behavioral task
behavioral1
Sample
7e23b9a01ad6bdf3e6e1bd0edce01ad7862bb73d4bd78fb8df2077e8e95d3040.exe
Resource
win7-20240215-en
Malware Config
Extracted
sality
http://89.119.67.154/testo5/
http://kukutrustnet777.info/home.gif
http://kukutrustnet888.info/home.gif
http://kukutrustnet987.info/home.gif
Targets
-
-
Target
7e23b9a01ad6bdf3e6e1bd0edce01ad7862bb73d4bd78fb8df2077e8e95d3040
-
Size
2.4MB
-
MD5
a4bc8d274cfe5282af12e92579c7a163
-
SHA1
a3d48d1b8701e463618234ca95ef6d4f56f990b5
-
SHA256
7e23b9a01ad6bdf3e6e1bd0edce01ad7862bb73d4bd78fb8df2077e8e95d3040
-
SHA512
4e22aaf0952c7fd505c16f73e469fedb06191ffaa1a8d2de8881dbbcf528bab020b2f7ca9a5d447b9ff7bdba82219b4c15b98ad09fc7a44f37dd5d546e2d53e5
-
SSDEEP
49152:LtiggggMZybOEfM77Ujc6vp5KQ6Ux/WJ0KP/hk8IQgZmthmzT7WNi:Bxy0AJpEQ6ou0gh9IQm
-
Modifies firewall policy service
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Create or Modify System Process
1Windows Service
1