Overview

overview

10

Static

static

1

URLScan

urlscan

1

https://www.mediafir...

windows11-21h2-x64

10

Resubmissions

24-08-2024 15:27

240824-sv18lsybpq 10

24-08-2024 15:21

240824-srr6jayakk 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    https://www.mediafire.com/file/aaguct1m2lg1la9/HITMAN_3_v3.10_Plus_11_Trainer.exe/file

  • Sample

    240824-sv18lsybpq

Score
10/10
r77defense_evasiondiscoverypersistencerootkit

Malware Config

Targets

    • Target

      https://www.mediafire.com/file/aaguct1m2lg1la9/HITMAN_3_v3.10_Plus_11_Trainer.exe/file

    Score
    10/10
    r77defense_evasiondiscoverypersistencerootkit

    • r77

      r77 is an open-source, userland rootkit.

      rootkitr77

    • r77 rootkit payload

      Detects the payload of the r77 rootkit.

    • Downloads MZ/PE file

    • Drops file in Drivers directory

    • Sets service image path in registry

      persistence

    • Executes dropped EXE

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks