General
-
Target
[1] Elite Pro Telemetry Optimization.bat
-
Size
36KB
-
Sample
241107-2whmbsyqcs
-
MD5
df1da28affb5f5816bacca6e152fc0f7
-
SHA1
25f096d224b058dd92a47ae51ec50ce61eae8eb2
-
SHA256
fbe2837f287c90e1a2b73eca261e6582417974182f15012dbf9b714c34a2be48
-
SHA512
8725d1f9e16e8dc4117ec1164608982939bd77f2f9e79fef042ff949835ffa9df20729e7f817e31aec3a626d319b8e33fa5e03e8a8aa7851e88bf6671124f1aa
-
SSDEEP
384:/L8Eg8Cpp56nsh0gANRYs/nA9brM94Zwhs8NYeVHxY8YgMxagrB:/L8rH/4ns6FHViB
Static task
static1
Behavioral task
behavioral1
Sample
[1] Elite Pro Telemetry Optimization.bat
Resource
win7-20241023-en
Behavioral task
behavioral2
Sample
[1] Elite Pro Telemetry Optimization.bat
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
[1] Elite Pro Telemetry Optimization.bat
-
Size
36KB
-
MD5
df1da28affb5f5816bacca6e152fc0f7
-
SHA1
25f096d224b058dd92a47ae51ec50ce61eae8eb2
-
SHA256
fbe2837f287c90e1a2b73eca261e6582417974182f15012dbf9b714c34a2be48
-
SHA512
8725d1f9e16e8dc4117ec1164608982939bd77f2f9e79fef042ff949835ffa9df20729e7f817e31aec3a626d319b8e33fa5e03e8a8aa7851e88bf6671124f1aa
-
SSDEEP
384:/L8Eg8Cpp56nsh0gANRYs/nA9brM94Zwhs8NYeVHxY8YgMxagrB:/L8rH/4ns6FHViB
Score10/10-
Disables taskbar notifications via registry modification
-
Event Triggered Execution: Image File Execution Options Injection
-
Legitimate hosting services abused for malware hosting/C2
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Execution
Command and Scripting Interpreter
1PowerShell
1System Services
2Service Execution
2Persistence
Create or Modify System Process
2Windows Service
2Event Triggered Execution
1Image File Execution Options Injection
1