General
-
Target
e163f5bbb632d8e043f47d261f2c8d2e6339a0ab3737329d9b0ef7e7abce76eb
-
Size
6.9MB
-
Sample
241103-f2vyyswdmb
-
MD5
7782313610d52eefec33d75a5035806f
-
SHA1
a577a87906dc22cd92ca8a1c51fc28d1ec7d7637
-
SHA256
e163f5bbb632d8e043f47d261f2c8d2e6339a0ab3737329d9b0ef7e7abce76eb
-
SHA512
463da44fd72660166a3c350afba8867419948d0e1f761ac9e76e2b4c9c4f25d1d2ae098766d3c70794fe74a618534992ed2b80f0a71707652bf9efea50eb9586
-
SSDEEP
98304:rIyVIyQWQtZ/K0tGOFWVRuLftCTzLapI9:tXQWyZ/K0ttYVAATzcI9
Static task
static1
Behavioral task
behavioral1
Sample
e163f5bbb632d8e043f47d261f2c8d2e6339a0ab3737329d9b0ef7e7abce76eb.exe
Resource
win7-20240903-en
Malware Config
Targets
-
-
Target
e163f5bbb632d8e043f47d261f2c8d2e6339a0ab3737329d9b0ef7e7abce76eb
-
Size
6.9MB
-
MD5
7782313610d52eefec33d75a5035806f
-
SHA1
a577a87906dc22cd92ca8a1c51fc28d1ec7d7637
-
SHA256
e163f5bbb632d8e043f47d261f2c8d2e6339a0ab3737329d9b0ef7e7abce76eb
-
SHA512
463da44fd72660166a3c350afba8867419948d0e1f761ac9e76e2b4c9c4f25d1d2ae098766d3c70794fe74a618534992ed2b80f0a71707652bf9efea50eb9586
-
SSDEEP
98304:rIyVIyQWQtZ/K0tGOFWVRuLftCTzLapI9:tXQWyZ/K0ttYVAATzcI9
-
Grants admin privileges
Uses net.exe to modify the user's privileges.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Account Manipulation
1Create or Modify System Process
1Windows Service
1Privilege Escalation
Account Manipulation
1Create or Modify System Process
1Windows Service
1