General
-
Target
2024-06-28_4a0924c3e7079e44966246c1057de747_mafia
-
Size
1.0MB
-
Sample
240628-edxbfazcle
-
MD5
4a0924c3e7079e44966246c1057de747
-
SHA1
9ae9a85cdcba274150a561590ceb709cc5ca4508
-
SHA256
00465a6a0df80b9136a40f295febb242ef3eb3a81c24c643aa6639aa79414f84
-
SHA512
4962f7caec157e7f6beaba4c0824b6012edab366bd6cf849bad2ed70645ed6db9fe015b1359ea68f201f1797c473c134958446c32949e62e3670c7389f89871b
-
SSDEEP
24576:HG2EgSiOmJK8f40qsis1fL+rwyf5OH/ItewTvBy81u8vLHII/GY:HGMSiiFs1aR5OH4nBynqII
Malware Config
Targets
-
-
Target
2024-06-28_4a0924c3e7079e44966246c1057de747_mafia
-
Size
1.0MB
-
MD5
4a0924c3e7079e44966246c1057de747
-
SHA1
9ae9a85cdcba274150a561590ceb709cc5ca4508
-
SHA256
00465a6a0df80b9136a40f295febb242ef3eb3a81c24c643aa6639aa79414f84
-
SHA512
4962f7caec157e7f6beaba4c0824b6012edab366bd6cf849bad2ed70645ed6db9fe015b1359ea68f201f1797c473c134958446c32949e62e3670c7389f89871b
-
SSDEEP
24576:HG2EgSiOmJK8f40qsis1fL+rwyf5OH/ItewTvBy81u8vLHII/GY:HGMSiiFs1aR5OH4nBynqII
Score10/10-
Windows security bypass
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1