General
-
Target
9a62a813c4d97e58773d46c837388cab826ecdc7dde603a806a3ee3beaea9985
-
Size
1.9MB
-
Sample
240517-wy9wpsce57
-
MD5
ebdff2e7abd4e43c63ba513dcd45fb6f
-
SHA1
eefff678c96020edfe2c2737f4c59fcae912eac5
-
SHA256
9a62a813c4d97e58773d46c837388cab826ecdc7dde603a806a3ee3beaea9985
-
SHA512
83f862bf1cde7c8e5d3ee8626456cc926c830194331b05b27b2cc6b3e2bdd8697ac75d9f7b9b88f86a020fa5d53f26936615631809761b5fe1df96617a7e7aea
-
SSDEEP
49152:h1iWwV9wxTeUJtk5/IjTf5GelUXKerOmhi4O:hAvodvJtk/eloO
Static task
static1
Behavioral task
behavioral1
Sample
9a62a813c4d97e58773d46c837388cab826ecdc7dde603a806a3ee3beaea9985.exe
Resource
win7-20231129-en
Malware Config
Extracted
sality
http://89.119.67.154/testo5/
http://kukutrustnet777.info/home.gif
http://kukutrustnet888.info/home.gif
http://kukutrustnet987.info/home.gif
Targets
-
-
Target
9a62a813c4d97e58773d46c837388cab826ecdc7dde603a806a3ee3beaea9985
-
Size
1.9MB
-
MD5
ebdff2e7abd4e43c63ba513dcd45fb6f
-
SHA1
eefff678c96020edfe2c2737f4c59fcae912eac5
-
SHA256
9a62a813c4d97e58773d46c837388cab826ecdc7dde603a806a3ee3beaea9985
-
SHA512
83f862bf1cde7c8e5d3ee8626456cc926c830194331b05b27b2cc6b3e2bdd8697ac75d9f7b9b88f86a020fa5d53f26936615631809761b5fe1df96617a7e7aea
-
SSDEEP
49152:h1iWwV9wxTeUJtk5/IjTf5GelUXKerOmhi4O:hAvodvJtk/eloO
-
Modifies firewall policy service
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Create or Modify System Process
1Windows Service
1