General
-
Target
https://drive.google.com/drive/folders/10giNQ3CzG2OWwqUogveWyzYYsj5zuqD4?usp=drive_link
-
Sample
241204-xn29jswmaz
Score
8/10
Static task
static1
URLScan task
urlscan1
Behavioral task
behavioral1
Sample
https://drive.google.com/drive/folders/10giNQ3CzG2OWwqUogveWyzYYsj5zuqD4?usp=drive_link
Resource
win11-20241007-en
windows11-21h2-x64
25 signatures
1800 seconds
Malware Config
Targets
-
-
Target
https://drive.google.com/drive/folders/10giNQ3CzG2OWwqUogveWyzYYsj5zuqD4?usp=drive_link
Score8/10-
Possible privilege escalation attempt
-
Executes dropped EXE
-
Modifies file permissions
-
File and Directory Permissions Modification: Windows File and Directory Permissions Modification
-
Legitimate hosting services abused for malware hosting/C2
-
Drops file in System32 directory
-
Enumerates processes with tasklist
-
MITRE ATT&CK Enterprise v15
Defense Evasion
File and Directory Permissions Modification
2Windows File and Directory Permissions Modification
1Modify Registry
1Subvert Trust Controls
1SIP and Trust Provider Hijacking
1