General
-
Target
bdca1f94a0edbca9fe7b034220542cf67d4476ec8b9eabf1118d5c86ee672a27
-
Size
169KB
-
Sample
240220-e927kabf95
-
MD5
27704c3c8cebf420d3d1418a2926a49d
-
SHA1
49fb10ddd724c443cc4dfdfa99212726869e9e0d
-
SHA256
bdca1f94a0edbca9fe7b034220542cf67d4476ec8b9eabf1118d5c86ee672a27
-
SHA512
90c0a9f31a2bf0f445aa49795776cfd75d34f5ebc2e28fa8cd3f5023238c7e9a0017620d0276208c210ef63c70a7c1482cb7335cfa551a961b912eb2b307d811
-
SSDEEP
3072:CcT+RR4Y85OFYOAz8omadosUCVy0fj73hl:CckRlYOAb3GsfksfL
Static task
static1
Behavioral task
behavioral1
Sample
bdca1f94a0edbca9fe7b034220542cf67d4476ec8b9eabf1118d5c86ee672a27.exe
Resource
win7-20231215-en
Malware Config
Extracted
sality
http://89.119.67.154/testo5/
http://kukutrustnet777.info/home.gif
http://kukutrustnet888.info/home.gif
http://kukutrustnet987.info/home.gif
http://www.klkjwre9fqwieluoi.info/
http://kukutrustnet777888.info/
Targets
-
-
Target
bdca1f94a0edbca9fe7b034220542cf67d4476ec8b9eabf1118d5c86ee672a27
-
Size
169KB
-
MD5
27704c3c8cebf420d3d1418a2926a49d
-
SHA1
49fb10ddd724c443cc4dfdfa99212726869e9e0d
-
SHA256
bdca1f94a0edbca9fe7b034220542cf67d4476ec8b9eabf1118d5c86ee672a27
-
SHA512
90c0a9f31a2bf0f445aa49795776cfd75d34f5ebc2e28fa8cd3f5023238c7e9a0017620d0276208c210ef63c70a7c1482cb7335cfa551a961b912eb2b307d811
-
SSDEEP
3072:CcT+RR4Y85OFYOAz8omadosUCVy0fj73hl:CckRlYOAb3GsfksfL
-
Modifies firewall policy service
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Create or Modify System Process
1Windows Service
1