General
-
Target
https://cdn.discordapp.com/attachments/1183430081692053665/1261858668555796651/Justive_Tweaks.zip?ex=67126436&is=671112b6&hm=cd1623596d294bf3adbf69c7214c330b2234d5d43e8a4d7acaf082cbef651c25&
-
Sample
241018-ab8t8stgnd
Static task
static1
URLScan task
urlscan1
Behavioral task
behavioral1
Sample
https://cdn.discordapp.com/attachments/1183430081692053665/1261858668555796651/Justive_Tweaks.zip?ex=67126436&is=671112b6&hm=cd1623596d294bf3adbf69c7214c330b2234d5d43e8a4d7acaf082cbef651c25&
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
https://cdn.discordapp.com/attachments/1183430081692053665/1261858668555796651/Justive_Tweaks.zip?ex=67126436&is=671112b6&hm=cd1623596d294bf3adbf69c7214c330b2234d5d43e8a4d7acaf082cbef651c25&
-
Modifies boot configuration data using bcdedit
-
Event Triggered Execution: Image File Execution Options Injection
-
MITRE ATT&CK Enterprise v15
Persistence
Event Triggered Execution
2Image File Execution Options Injection
1Netsh Helper DLL
1Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Event Triggered Execution
2Image File Execution Options Injection
1Netsh Helper DLL
1Defense Evasion
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Impair Defenses
1Disable or Modify Tools
1Modify Registry
1