General
-
Target
84051e329589ab9f7477881ce83eff030fdf9aef25cc218ed8d204498c71d630
-
Size
2.3MB
-
Sample
240518-j7ka7abd4t
-
MD5
afc9983c53cb1cf1499744e352d55495
-
SHA1
def7a0a8fe04e85b78784f2bf4085b4336f87e5b
-
SHA256
84051e329589ab9f7477881ce83eff030fdf9aef25cc218ed8d204498c71d630
-
SHA512
ebde26f7244388f745ead564445b460cb7cc2dfc2162ed16fabc1eff7bbadcd77ea4f29de17c1ac20c2aaf04252d373aafe91861a5a7827c57157dc4dcd8ab2c
-
SSDEEP
49152:JvggggMYMb0aDsQ1FTw5GbFp0whdZSjYKP/hVY7kXE7PO:JUb0aDfssbFpbUYghO
Static task
static1
Behavioral task
behavioral1
Sample
84051e329589ab9f7477881ce83eff030fdf9aef25cc218ed8d204498c71d630.exe
Resource
win7-20240221-en
Malware Config
Extracted
sality
http://89.119.67.154/testo5/
http://kukutrustnet777.info/home.gif
http://kukutrustnet888.info/home.gif
http://kukutrustnet987.info/home.gif
Targets
-
-
Target
84051e329589ab9f7477881ce83eff030fdf9aef25cc218ed8d204498c71d630
-
Size
2.3MB
-
MD5
afc9983c53cb1cf1499744e352d55495
-
SHA1
def7a0a8fe04e85b78784f2bf4085b4336f87e5b
-
SHA256
84051e329589ab9f7477881ce83eff030fdf9aef25cc218ed8d204498c71d630
-
SHA512
ebde26f7244388f745ead564445b460cb7cc2dfc2162ed16fabc1eff7bbadcd77ea4f29de17c1ac20c2aaf04252d373aafe91861a5a7827c57157dc4dcd8ab2c
-
SSDEEP
49152:JvggggMYMb0aDsQ1FTw5GbFp0whdZSjYKP/hVY7kXE7PO:JUb0aDfssbFpbUYghO
-
Modifies firewall policy service
-
MITRE ATT&CK Matrix ATT&CK v13
Privilege Escalation
Create or Modify System Process
1Windows Service
1Abuse Elevation Control Mechanism
1Bypass User Account Control
1