General
-
Target
rustdesk-1.3.2-x86_64.exe
-
Size
20.8MB
-
Sample
241120-x7479a1rev
-
MD5
aa6d18e1405a0be5eff04d419f9c6bbe
-
SHA1
30ed558a8804b5f826a3ca4a1c2212de58e6030a
-
SHA256
465e3cc0befa33ef54db3819d224e19cffe684cfe687c76b43352f5bb9c2d87e
-
SHA512
b4afce979135252b09b363b06461ab943f0f3a35e0f60bcaee49727f133904e8269faa7ddee73026ca28e6412e59bb50d802ebe15415b6bf1e022e177ef22168
-
SSDEEP
393216:wm5lerU7OybbyfqdBYk+uDJC8PCuNnoUvGtN1PK7Ue+kis+:6rU7jfyCdD+t8PC4oUiJKIe+pB
Malware Config
Targets
-
-
Target
rustdesk-1.3.2-x86_64.exe
-
Size
20.8MB
-
MD5
aa6d18e1405a0be5eff04d419f9c6bbe
-
SHA1
30ed558a8804b5f826a3ca4a1c2212de58e6030a
-
SHA256
465e3cc0befa33ef54db3819d224e19cffe684cfe687c76b43352f5bb9c2d87e
-
SHA512
b4afce979135252b09b363b06461ab943f0f3a35e0f60bcaee49727f133904e8269faa7ddee73026ca28e6412e59bb50d802ebe15415b6bf1e022e177ef22168
-
SSDEEP
393216:wm5lerU7OybbyfqdBYk+uDJC8PCuNnoUvGtN1PK7Ue+kis+:6rU7jfyCdD+t8PC4oUiJKIe+pB
Score8/10-
Modifies Windows Firewall
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies file permissions
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Defense Evasion
File and Directory Permissions Modification
1Impair Defenses
1Disable or Modify System Firewall
1