Resubmissions

13/05/2024, 05:59

240513-gprlfadc24 8

13/05/2024, 05:52

240513-gks9gaab61 8

General

  • Target

    https://cdn.discordapp.com/attachments/1162994440965738496/1239455116697010257/rufus-3.20.exe?ex=6642fc07&is=6641aa87&hm=3d6e64127583104b45cab327b2c7de8c9651675be3f763f9da4b1c92cf8051c2&

  • Sample

    240513-gprlfadc24

Score
8/10

Malware Config

Targets

    • Target

      https://cdn.discordapp.com/attachments/1162994440965738496/1239455116697010257/rufus-3.20.exe?ex=6642fc07&is=6641aa87&hm=3d6e64127583104b45cab327b2c7de8c9651675be3f763f9da4b1c92cf8051c2&

    Score
    8/10
    • Downloads MZ/PE file

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks whether UAC is enabled

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks