General
-
Target
09f47b29a84e1d9bd24234520cab7919aefeaa5f1fd069cce2de86014b01b20f
-
Size
4.0MB
-
Sample
240220-by3geahd39
-
MD5
91fe9371153a99f04a93c79394da29b8
-
SHA1
0653ab296563f49d27ea4301f347bea629e59628
-
SHA256
09f47b29a84e1d9bd24234520cab7919aefeaa5f1fd069cce2de86014b01b20f
-
SHA512
f9456183b531c4cf9b8a04209a15f99def4a5dda3811d9248418157e8b8e2abb61633718c4a9fd268bc77291685cdc32022cead7b979420f7f26555da9e177ad
-
SSDEEP
24576:ZhynGaz1zIHA7dT4neKnBqhjHmYh8TZvKxVSK007:ZUGaZxmeGBSmYiZ9p0
Static task
static1
Behavioral task
behavioral1
Sample
09f47b29a84e1d9bd24234520cab7919aefeaa5f1fd069cce2de86014b01b20f.exe
Resource
win7-20240215-en
Malware Config
Extracted
sality
http://89.119.67.154/testo5/
http://kukutrustnet777.info/home.gif
http://kukutrustnet888.info/home.gif
http://kukutrustnet987.info/home.gif
Targets
-
-
Target
09f47b29a84e1d9bd24234520cab7919aefeaa5f1fd069cce2de86014b01b20f
-
Size
4.0MB
-
MD5
91fe9371153a99f04a93c79394da29b8
-
SHA1
0653ab296563f49d27ea4301f347bea629e59628
-
SHA256
09f47b29a84e1d9bd24234520cab7919aefeaa5f1fd069cce2de86014b01b20f
-
SHA512
f9456183b531c4cf9b8a04209a15f99def4a5dda3811d9248418157e8b8e2abb61633718c4a9fd268bc77291685cdc32022cead7b979420f7f26555da9e177ad
-
SSDEEP
24576:ZhynGaz1zIHA7dT4neKnBqhjHmYh8TZvKxVSK007:ZUGaZxmeGBSmYiZ9p0
-
Modifies firewall policy service
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Create or Modify System Process
1Windows Service
1