General
-
Target
Fluks Redux - Desktop - Mini PC.bat
-
Size
43KB
-
Sample
241111-m2tjfsxpcw
-
MD5
47bdaa07aae9a6ab0b068617cedc427c
-
SHA1
7bef82f00a8955045422a2acbf6d04f89ea6885b
-
SHA256
af8560b0c5f6c1cd63887b5c18ab087b73667b175b66972a0ada71aa000f3ee2
-
SHA512
2fc3570f619824143eb059d7a65cbaa8ff79d5382f82241e6391abf7e327e25fe2a433206737e276160bf660f0dcf94403c08e15ddc0f2a95beddb4d70196b29
-
SSDEEP
768:g4YjeTQxq0bODoyMbsbLyQac9UkBUkXiQW:pYfxWDt9UCUkXiQW
Static task
static1
Behavioral task
behavioral1
Sample
Fluks Redux - Desktop - Mini PC.bat
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
Fluks Redux - Desktop - Mini PC.bat
-
Size
43KB
-
MD5
47bdaa07aae9a6ab0b068617cedc427c
-
SHA1
7bef82f00a8955045422a2acbf6d04f89ea6885b
-
SHA256
af8560b0c5f6c1cd63887b5c18ab087b73667b175b66972a0ada71aa000f3ee2
-
SHA512
2fc3570f619824143eb059d7a65cbaa8ff79d5382f82241e6391abf7e327e25fe2a433206737e276160bf660f0dcf94403c08e15ddc0f2a95beddb4d70196b29
-
SSDEEP
768:g4YjeTQxq0bODoyMbsbLyQac9UkBUkXiQW:pYfxWDt9UCUkXiQW
-
Modifies boot configuration data using bcdedit
-
Possible privilege escalation attempt
-
Modifies file permissions
-
Power Settings
powercfg controls all configurable power system settings on a Windows system and can be abused to prevent an infected host from locking or shutting down.
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Execution
Command and Scripting Interpreter
2PowerShell
1System Services
1Service Execution
1Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Power Settings
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Defense Evasion
File and Directory Permissions Modification
1Impair Defenses
1Disable or Modify Tools
1Modify Registry
1