General
-
Target
aa8b415f06553b7d934be4648103b6a1
-
Size
385KB
-
Sample
240228-avc7nsfa58
-
MD5
aa8b415f06553b7d934be4648103b6a1
-
SHA1
cae6dac8800944949757f4e951bb393eb16c3b17
-
SHA256
38bf8d9483c0e1e5410d6e65e414cb4cf8666ace00a1d9e89e3f6b23257fe5e7
-
SHA512
512c89bebc38708f7e157b6f31d42cf051e3a2f00b0d40474040a22ec12549533d20343a90bd646b76c1e7045c39f37e6de1d7b74356a55ee8b251c0e29e4cd3
-
SSDEEP
6144:2/gd/PcpCG0fJMHneMCDB6sEFu6XwydbyY9gHDtWGDSYAnLCI:cv4G0fchCd+RXwycY9gkGTALb
Malware Config
Targets
-
-
Target
aa8b415f06553b7d934be4648103b6a1
-
Size
385KB
-
MD5
aa8b415f06553b7d934be4648103b6a1
-
SHA1
cae6dac8800944949757f4e951bb393eb16c3b17
-
SHA256
38bf8d9483c0e1e5410d6e65e414cb4cf8666ace00a1d9e89e3f6b23257fe5e7
-
SHA512
512c89bebc38708f7e157b6f31d42cf051e3a2f00b0d40474040a22ec12549533d20343a90bd646b76c1e7045c39f37e6de1d7b74356a55ee8b251c0e29e4cd3
-
SSDEEP
6144:2/gd/PcpCG0fJMHneMCDB6sEFu6XwydbyY9gHDtWGDSYAnLCI:cv4G0fchCd+RXwycY9gkGTALb
Score10/10-
UAC bypass
-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Windows security modification
-
Adds Run key to start application
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1