General
-
Target
605cbd2c44e0f04716b233626c31907a8a3a451e25a9dc2e6b8939b3ee82f482N
-
Size
860KB
-
Sample
241101-v1tf3a1qct
-
MD5
a8a491947c74a7dfb9f00bca59a243e0
-
SHA1
d951464e7c0ec23617fb35f5ae622850f6a3e5d1
-
SHA256
605cbd2c44e0f04716b233626c31907a8a3a451e25a9dc2e6b8939b3ee82f482
-
SHA512
b1c0b2248605b6e2195dac08173af551541dd50bbd86209450c6f2cfad6b7ad87ca3116cf95aadf5834f8d6a67a8caa53c905c1586be1d752b2b840bad2c974d
-
SSDEEP
24576:2LADaJYo8sYH4LaWhOIPqd5x43NXzofQWMSnmwrAtF19w6AYhqp:2ipTMSnU
Malware Config
Targets
-
-
Target
605cbd2c44e0f04716b233626c31907a8a3a451e25a9dc2e6b8939b3ee82f482N
-
Size
860KB
-
MD5
a8a491947c74a7dfb9f00bca59a243e0
-
SHA1
d951464e7c0ec23617fb35f5ae622850f6a3e5d1
-
SHA256
605cbd2c44e0f04716b233626c31907a8a3a451e25a9dc2e6b8939b3ee82f482
-
SHA512
b1c0b2248605b6e2195dac08173af551541dd50bbd86209450c6f2cfad6b7ad87ca3116cf95aadf5834f8d6a67a8caa53c905c1586be1d752b2b840bad2c974d
-
SSDEEP
24576:2LADaJYo8sYH4LaWhOIPqd5x43NXzofQWMSnmwrAtF19w6AYhqp:2ipTMSnU
Score8/10-
Modifies Windows Firewall
-
Deletes itself
-
Drops startup file
-
Loads dropped DLL
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Defense Evasion
Impair Defenses
1Disable or Modify System Firewall
1Modify Registry
1Subvert Trust Controls
1Install Root Certificate
1