General

  • Target

    [1] Elite Pro Telemetry Optimization.bat

  • Size

    36KB

  • Sample

    241107-2whmbsyqcs

  • MD5

    df1da28affb5f5816bacca6e152fc0f7

  • SHA1

    25f096d224b058dd92a47ae51ec50ce61eae8eb2

  • SHA256

    fbe2837f287c90e1a2b73eca261e6582417974182f15012dbf9b714c34a2be48

  • SHA512

    8725d1f9e16e8dc4117ec1164608982939bd77f2f9e79fef042ff949835ffa9df20729e7f817e31aec3a626d319b8e33fa5e03e8a8aa7851e88bf6671124f1aa

  • SSDEEP

    384:/L8Eg8Cpp56nsh0gANRYs/nA9brM94Zwhs8NYeVHxY8YgMxagrB:/L8rH/4ns6FHViB

Malware Config

Targets

    • Target

      [1] Elite Pro Telemetry Optimization.bat

    • Size

      36KB

    • MD5

      df1da28affb5f5816bacca6e152fc0f7

    • SHA1

      25f096d224b058dd92a47ae51ec50ce61eae8eb2

    • SHA256

      fbe2837f287c90e1a2b73eca261e6582417974182f15012dbf9b714c34a2be48

    • SHA512

      8725d1f9e16e8dc4117ec1164608982939bd77f2f9e79fef042ff949835ffa9df20729e7f817e31aec3a626d319b8e33fa5e03e8a8aa7851e88bf6671124f1aa

    • SSDEEP

      384:/L8Eg8Cpp56nsh0gANRYs/nA9brM94Zwhs8NYeVHxY8YgMxagrB:/L8rH/4ns6FHViB

    • Disables service(s)

    • Disables taskbar notifications via registry modification

    • Event Triggered Execution: Image File Execution Options Injection

    • Stops running service(s)

    • Legitimate hosting services abused for malware hosting/C2

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks