General
-
Target
acbefea95d27851415791bb9c27d2afb7d0e7b7fa3733d101a3a96a7603d8817.exe
-
Size
665KB
-
Sample
241112-q247qsxjhj
-
MD5
b7d3401b3f38c5a856d1951a1126994a
-
SHA1
763b91eb890aab9ee6d10d910955299d31ff20c1
-
SHA256
acbefea95d27851415791bb9c27d2afb7d0e7b7fa3733d101a3a96a7603d8817
-
SHA512
77c2417909416b4c8acac65af84cba563470c06b73544b5947265cef843b00c0224f754a53eaeda8e794f48b4cf51922460300673fb9ad89689714226718e98f
-
SSDEEP
12288:fhkDgouVA2nxKkozvdRgQriDwOIQmxiZnYQE7PJcD4anJV2:lRmJk8oQricOIvxiZY15anT2
Static task
static1
Behavioral task
behavioral1
Sample
acbefea95d27851415791bb9c27d2afb7d0e7b7fa3733d101a3a96a7603d8817.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
acbefea95d27851415791bb9c27d2afb7d0e7b7fa3733d101a3a96a7603d8817.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
acbefea95d27851415791bb9c27d2afb7d0e7b7fa3733d101a3a96a7603d8817.exe
-
Size
665KB
-
MD5
b7d3401b3f38c5a856d1951a1126994a
-
SHA1
763b91eb890aab9ee6d10d910955299d31ff20c1
-
SHA256
acbefea95d27851415791bb9c27d2afb7d0e7b7fa3733d101a3a96a7603d8817
-
SHA512
77c2417909416b4c8acac65af84cba563470c06b73544b5947265cef843b00c0224f754a53eaeda8e794f48b4cf51922460300673fb9ad89689714226718e98f
-
SSDEEP
12288:fhkDgouVA2nxKkozvdRgQriDwOIQmxiZnYQE7PJcD4anJV2:lRmJk8oQricOIvxiZY15anT2
Score10/10-
Drops file in Drivers directory
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Impair Defenses
1Disable or Modify Tools
1Modify Registry
3