General
-
Target
malware.txt
-
Size
5KB
-
Sample
240519-sqya6acf79
-
MD5
97b26482ceb60d0f7cddfc0ca528f9ef
-
SHA1
0aa4343f9a757f864d617279fa4766b0a38ce72f
-
SHA256
48db7f40db76b3820b5c47d30f4cb99b79e755cbf61dddd6f2012f26eea52c9a
-
SHA512
5d1a5ee7ea521ceff427c402527bfba365579e25892a029d0d9ed77fe4b22c453c18fe48e24d275e090c00d2efb2e0adcf753e1658b2c061de61ea52b43c1af0
-
SSDEEP
96:qD5YNb8mN8r9f4PPfMSHnx2gqoij8RW8E/zmdPzWdEKuWP2W9NukS/MNa:qD5YqrZgX7yrCdPidfbU0a
Static task
static1
Behavioral task
behavioral1
Sample
malware.vbs
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
malware.vbs
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
malware.txt
-
Size
5KB
-
MD5
97b26482ceb60d0f7cddfc0ca528f9ef
-
SHA1
0aa4343f9a757f864d617279fa4766b0a38ce72f
-
SHA256
48db7f40db76b3820b5c47d30f4cb99b79e755cbf61dddd6f2012f26eea52c9a
-
SHA512
5d1a5ee7ea521ceff427c402527bfba365579e25892a029d0d9ed77fe4b22c453c18fe48e24d275e090c00d2efb2e0adcf753e1658b2c061de61ea52b43c1af0
-
SSDEEP
96:qD5YNb8mN8r9f4PPfMSHnx2gqoij8RW8E/zmdPzWdEKuWP2W9NukS/MNa:qD5YqrZgX7yrCdPidfbU0a
-
Modifies boot configuration data using bcdedit
-
Creates new service(s)
-
Disables RegEdit via registry modification
-
Disables Task Manager via registry modification
-
Modifies Windows Firewall
-
Possible privilege escalation attempt
-
Modifies file permissions
-
Drops file in System32 directory
-
MITRE ATT&CK Matrix ATT&CK v13
Execution
System Services
1Service Execution
1Command and Scripting Interpreter
1Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Create or Modify System Process
2Windows Service
2Defense Evasion
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Impair Defenses
2Disable or Modify Tools
1Disable or Modify System Firewall
1Modify Registry
1File and Directory Permissions Modification
1