General

  • Target

    themepatcher.zip

  • Size

    80KB

  • Sample

    241110-f9617a1aqk

  • MD5

    934083ea44c79168490a0d665bf05235

  • SHA1

    0a22e83eda0e8ebc941bf928d87614ac8d02ea98

  • SHA256

    bd63ad409668d18de3c83f571b5e155550eb4a648c933ecc82968238b120458a

  • SHA512

    9f54ee596042057a8dde00f2bf3865ec2ca6b901ae2f913ec8ed7fc46b0c462b942cf1c57d95ddd7f9fb86b768c3ede0ce6a5dfe864982bdb86f19d641869eb9

  • SSDEEP

    1536:csptFYkAJbkbJx9l/wHPza4Hyq0fnYbELD3eTAhZYb8LGVh/o1CxNV8:PFbAJYbffSCq0fn7vDSvT8

Score
8/10

Malware Config

Targets

    • Target

      UniversalThemePatcher_20090409/UniversalThemePatcher-x64.exe

    • Size

      92KB

    • MD5

      5eac71e2ab8b58f00da48a21becb586f

    • SHA1

      57fe7ac0196a04b535615f19b0758e75071a9943

    • SHA256

      196756bea46f45de4b8e2eedebd51df8222f627f1eb9c2876d927718c85286e9

    • SHA512

      2345d45a9d2b163d2a550808ab2af72748e80615e9d7965d40642b80cf53c3eab3ad07cbfed6b8b97ea1656436306919de6e74fef9f62c62456bd058c70830ff

    • SSDEEP

      1536:gygP+gUrcNLHnX6YlQZfIpFSC6L9XMI+l1+N2:zgPbtNLHBlQZfIWC6xXMIYgs

    Score
    8/10
    • Possible privilege escalation attempt

    • Loads dropped DLL

    • Modifies file permissions

    • Drops file in System32 directory

    • Target

      UniversalThemePatcher_20090409/UniversalThemePatcher-x86.exe

    • Size

      72KB

    • MD5

      c35efaa15f6f1da888efc247e886389d

    • SHA1

      e3f35519380a564ff62f5ea2fa95fd5bca38bb1a

    • SHA256

      558f6e38c300957234231234c44ccf41217182677e859c9005a51094bdf01794

    • SHA512

      fd3d27271cab60f51929a4e92cccd0ce2edf8c95fd2db6cc957620ff2f7522e644b67862ec7803e6068f5ae75caedad9daae3dafdd4b7f4898c618c8498dca16

    • SSDEEP

      1536:oI78vwnEmMpryYRt2M5d3YieAB3iW+IalC6L9XMI+l1+hX:/78vwnEm+1RAkd3deANZ+IoC6xXMIYg1

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks