General
-
Target
M_Centers_8th_Edition_8.0.1.3_x64.zip
-
Size
5.4MB
-
Sample
241006-lt4h1sxfkr
-
MD5
45e79c6885617d804b3cd32374b73c35
-
SHA1
4fdbff28617c4a42df7584767bb55970cc071411
-
SHA256
fd7af6283feed5a93d769d404bfc3a6f1f8361823cbb51d12a9ee9a5640ae654
-
SHA512
36ab5eb3f2feade7bc8245c9e02ab2885d89d1016667b296f1fb7c0b55ba8448a82a42a6ebe7bb19154e9f27008f1b1fb48d9571572f218714400c582489a772
-
SSDEEP
98304:h7bWJRBNof5rGnJZ4Kvm0pzrZM8atV4ef2KrqUrMrEDf4OPoiwbEyiO8PKNvlCyQ:hPGHoflA4KvmMXZyfDeUrM8o6PElCyPo
Static task
static1
Malware Config
Targets
-
-
Target
M_Centers_8th_Edition_8.0.1.3_x64.zip
-
Size
5.4MB
-
MD5
45e79c6885617d804b3cd32374b73c35
-
SHA1
4fdbff28617c4a42df7584767bb55970cc071411
-
SHA256
fd7af6283feed5a93d769d404bfc3a6f1f8361823cbb51d12a9ee9a5640ae654
-
SHA512
36ab5eb3f2feade7bc8245c9e02ab2885d89d1016667b296f1fb7c0b55ba8448a82a42a6ebe7bb19154e9f27008f1b1fb48d9571572f218714400c582489a772
-
SSDEEP
98304:h7bWJRBNof5rGnJZ4Kvm0pzrZM8atV4ef2KrqUrMrEDf4OPoiwbEyiO8PKNvlCyQ:hPGHoflA4KvmMXZyfDeUrM8o6PElCyPo
-
Downloads MZ/PE file
-
Possible privilege escalation attempt
-
Modifies file permissions
-
Legitimate hosting services abused for malware hosting/C2
-
Drops file in System32 directory
-