Overview

overview

10

Static

static

1

Lifenz Uti...nd.bat

windows7-x64

1

Lifenz Uti...nd.bat

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Lifenz Utility - Made By My Friend.bat

  • Size

    229KB

  • Sample

    240920-vv5bdaxgmd

  • MD5

    f58bacec0fcb2556102b6d6922c19866

  • SHA1

    f2e645e168b7557abe72807bed452d4f7ef8a54c

  • SHA256

    ea4b610f369125f841978184a437e130132dfcdcd28e31340c8d000cceb86b88

  • SHA512

    8c89d7eb67d1ca17f525bcc15d99689ccf5ad4765766ceb4cc23b4c1dd1893c33a79efb1bc7d90e20511ceca7aeeb504a63c69adb377f10f5509dc1239ac912a

  • SSDEEP

    768:fa+HkgKBWQq+jAcTtGiZQVr6r6Pk6PUXfCV1nFLPqoCo+0CQxwywh1ZIa1WsOKEf:faozQHdCbFB+uxwhO

Score
10/10
discoveryevasionexecutiontrojan

Malware Config

Targets

    • Target

      Lifenz Utility - Made By My Friend.bat

    • Size

      229KB

    • MD5

      f58bacec0fcb2556102b6d6922c19866

    • SHA1

      f2e645e168b7557abe72807bed452d4f7ef8a54c

    • SHA256

      ea4b610f369125f841978184a437e130132dfcdcd28e31340c8d000cceb86b88

    • SHA512

      8c89d7eb67d1ca17f525bcc15d99689ccf5ad4765766ceb4cc23b4c1dd1893c33a79efb1bc7d90e20511ceca7aeeb504a63c69adb377f10f5509dc1239ac912a

    • SSDEEP

      768:fa+HkgKBWQq+jAcTtGiZQVr6r6Pk6PUXfCV1nFLPqoCo+0CQxwywh1ZIa1WsOKEf:faozQHdCbFB+uxwhO

    Score
    10/10
    discoveryevasionexecutiontrojan

    • UAC bypass

      evasiontrojan

    • Command and Scripting Interpreter: PowerShell

      Using powershell.exe command.

      execution

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks