Resubmissions
29-09-2024 19:41
240929-yel2msxejq 8General
-
Target
M Centers.exe
-
Size
1.6MB
-
Sample
240929-yel2msxejq
-
MD5
1d3d75fa1c81b55d68500d95a92807fb
-
SHA1
c45be1e05788005a24e4c73628d1f85003890957
-
SHA256
5f405489a7f6c67bbcc130ebbb272a99bde94b0d01b1b958f6f05580fb58a2d3
-
SHA512
b910ed4d71503d888d004b28b4991f8d5b8635ad0fb708cc987f4996a1f4e6ee22469f0c9c29946913988fea3163c5f6e313fdf643249eba4adf9d5df0cfcc83
-
SSDEEP
49152:Lj2I6gR13Be4vZ+5o12w1cRTTQAwnnsn3nmB:nPRNXBGhw1wTEAwnnsn3nmB
Static task
static1
Malware Config
Targets
-
-
Target
M Centers.exe
-
Size
1.6MB
-
MD5
1d3d75fa1c81b55d68500d95a92807fb
-
SHA1
c45be1e05788005a24e4c73628d1f85003890957
-
SHA256
5f405489a7f6c67bbcc130ebbb272a99bde94b0d01b1b958f6f05580fb58a2d3
-
SHA512
b910ed4d71503d888d004b28b4991f8d5b8635ad0fb708cc987f4996a1f4e6ee22469f0c9c29946913988fea3163c5f6e313fdf643249eba4adf9d5df0cfcc83
-
SSDEEP
49152:Lj2I6gR13Be4vZ+5o12w1cRTTQAwnnsn3nmB:nPRNXBGhw1wTEAwnnsn3nmB
-
Possible privilege escalation attempt
-
Modifies file permissions
-
Legitimate hosting services abused for malware hosting/C2
-
Drops file in System32 directory
-