Resubmissions

30-08-2024 19:22

240830-x3lkca1bph 1

30-08-2024 19:19

240830-x1gtda1hjq 8

30-08-2024 19:17

240830-xzcg9s1akh 8

30-08-2024 19:10

240830-xvs98a1eql 8

General

  • Target

    https://dotnet.microsoft.com/en-us/download/dotnet/thank-you/sdk-8.0.401-windows-x64-installer

  • Sample

    240830-xvs98a1eql

Malware Config

Targets

    • Target

      https://dotnet.microsoft.com/en-us/download/dotnet/thank-you/sdk-8.0.401-windows-x64-installer

    • Downloads MZ/PE file

    • Indicator Removal: Clear Windows Event Logs

      Clear Windows Event Logs to hide the activity of an intrusion.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks