General
-
Target
Testing.rar
-
Size
37.8MB
-
Sample
240428-ded1taee86
-
MD5
54bb43d16af319d6f6792d2c2cc130a4
-
SHA1
d190bcf615cda006bb37a0c6c7caed7fc629127f
-
SHA256
f750f4dd58337e4e4d535b757c400dee171b6962acafec030b638a6850571dbb
-
SHA512
3ec1d649af85491703dd8f5ac3962b18d135306d290ac336aaa52fbbbbfc5373487815708d7857f5d8c417bbf998d235e1d643216cd7389cca952ce91be490a3
-
SSDEEP
786432:+1DPc9msqnuoGEhmLRsWs32SESgPUB2If75KZrs1JcPT+:Uc2xMNpsmS0wDsrs16r+
Static task
static1
Behavioral task
behavioral1
Sample
Testing.rar
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
Testing.rar
-
Size
37.8MB
-
MD5
54bb43d16af319d6f6792d2c2cc130a4
-
SHA1
d190bcf615cda006bb37a0c6c7caed7fc629127f
-
SHA256
f750f4dd58337e4e4d535b757c400dee171b6962acafec030b638a6850571dbb
-
SHA512
3ec1d649af85491703dd8f5ac3962b18d135306d290ac336aaa52fbbbbfc5373487815708d7857f5d8c417bbf998d235e1d643216cd7389cca952ce91be490a3
-
SSDEEP
786432:+1DPc9msqnuoGEhmLRsWs32SESgPUB2If75KZrs1JcPT+:Uc2xMNpsmS0wDsrs16r+
Score10/10-
Modifies firewall policy service
-
Disables RegEdit via registry modification
-
Modifies Windows Firewall
-
Stops running service(s)
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-
MITRE ATT&CK Matrix ATT&CK v13
Persistence
Create or Modify System Process
4Windows Service
4Event Triggered Execution
1Change Default File Association
1Privilege Escalation
Create or Modify System Process
4Windows Service
4Event Triggered Execution
1Change Default File Association
1