General
-
Target
malware.txt
-
Size
6KB
-
Sample
240519-tcg8fsdh87
-
MD5
e0776095121712202c80802058348633
-
SHA1
6915df50e7944d289d789085428fd73ba01c6653
-
SHA256
8d1cee07b1f4153c602c7af67f13391da300cc488e69b59279b1a8d75106d864
-
SHA512
7aaf8b33a91da07a62f9491c50c4637e9f1fee83d76ef3df9dc6843f1448457a93f892a1a1d93566aea2d08e9abcbfa25a943b52984f8669949eb2509d8ce1a6
-
SSDEEP
96:qD2WSNb8mN8r9f4PPfMSHnx2gqoij8RW8E/zmdPzWdEKuWP2W9NukS/Mom2i:qD8qrZgX7yrCdPidfbUG2i
Static task
static1
Behavioral task
behavioral1
Sample
malware.vbs
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
malware.vbs
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
malware.txt
-
Size
6KB
-
MD5
e0776095121712202c80802058348633
-
SHA1
6915df50e7944d289d789085428fd73ba01c6653
-
SHA256
8d1cee07b1f4153c602c7af67f13391da300cc488e69b59279b1a8d75106d864
-
SHA512
7aaf8b33a91da07a62f9491c50c4637e9f1fee83d76ef3df9dc6843f1448457a93f892a1a1d93566aea2d08e9abcbfa25a943b52984f8669949eb2509d8ce1a6
-
SSDEEP
96:qD2WSNb8mN8r9f4PPfMSHnx2gqoij8RW8E/zmdPzWdEKuWP2W9NukS/Mom2i:qD8qrZgX7yrCdPidfbUG2i
-
Modifies boot configuration data using bcdedit
-
Creates new service(s)
-
Disables RegEdit via registry modification
-
Disables Task Manager via registry modification
-
Modifies Windows Firewall
-
Possible privilege escalation attempt
-
Modifies file permissions
-
Drops file in System32 directory
-
MITRE ATT&CK Matrix ATT&CK v13
Execution
System Services
1Service Execution
1Command and Scripting Interpreter
1Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Create or Modify System Process
2Windows Service
2