General
-
Target
5b97f20b3568ef7b978b090a582e02de7b8ebb5ee33e905f089f0454968803b0
-
Size
3.6MB
-
Sample
240301-yc7wbscc5s
-
MD5
20fe7c590f70eb4c30f2a09b5e616613
-
SHA1
480870abe76a5b34129080edb31733430a346224
-
SHA256
5b97f20b3568ef7b978b090a582e02de7b8ebb5ee33e905f089f0454968803b0
-
SHA512
7afc403242951c5581430351d8f2a424e4e59d630c94bfa86e7c76128d987c1316ab573aa0c4f6ef998a2562873874e0b00129bba23201dff5d11f66eb3b55b7
-
SSDEEP
98304:xUXdtp5HAzDJ7CIN7OehtscFIqXymXH/MksWpiv2M8:xk5wr2oymX0ksWpiH8
Static task
static1
Behavioral task
behavioral1
Sample
5b97f20b3568ef7b978b090a582e02de7b8ebb5ee33e905f089f0454968803b0.exe
Resource
win7-20240221-en
Malware Config
Extracted
sality
http://89.119.67.154/testo5/
http://kukutrustnet777.info/home.gif
http://kukutrustnet888.info/home.gif
http://kukutrustnet987.info/home.gif
Targets
-
-
Target
5b97f20b3568ef7b978b090a582e02de7b8ebb5ee33e905f089f0454968803b0
-
Size
3.6MB
-
MD5
20fe7c590f70eb4c30f2a09b5e616613
-
SHA1
480870abe76a5b34129080edb31733430a346224
-
SHA256
5b97f20b3568ef7b978b090a582e02de7b8ebb5ee33e905f089f0454968803b0
-
SHA512
7afc403242951c5581430351d8f2a424e4e59d630c94bfa86e7c76128d987c1316ab573aa0c4f6ef998a2562873874e0b00129bba23201dff5d11f66eb3b55b7
-
SSDEEP
98304:xUXdtp5HAzDJ7CIN7OehtscFIqXymXH/MksWpiv2M8:xk5wr2oymX0ksWpiH8
-
Modifies firewall policy service
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Create or Modify System Process
1Windows Service
1