General
-
Target
6a3e27b0540fe392b2949096501482523f8ea9b097ebc0f914998024863ae7db.exe
-
Size
780KB
-
Sample
241219-kajttsxlbq
-
MD5
1b428c1780a986a3bbcc124192aa7b93
-
SHA1
510c649830f823e80e001e98717d0d8c466ab9dd
-
SHA256
6a3e27b0540fe392b2949096501482523f8ea9b097ebc0f914998024863ae7db
-
SHA512
74aa103035985dc6071f472515e0f813f2a26b45658020b99e473b2f0a7816d4717f41fe67cf1e81f795f1d56017703effa5f302578a7bc16dbaf881789c8ca9
-
SSDEEP
24576:F0ZhDa7BatUBFM8su0ZjpXZN0FmEOGpYmB:FwWNFBFM8s9FpXHunB
Static task
static1
Behavioral task
behavioral1
Sample
6a3e27b0540fe392b2949096501482523f8ea9b097ebc0f914998024863ae7db.exe
Resource
win7-20240903-en
Malware Config
Extracted
sality
http://89.119.67.154/testo5/
http://kukutrustnet777.info/home.gif
http://kukutrustnet888.info/home.gif
http://kukutrustnet987.info/home.gif
Targets
-
-
Target
6a3e27b0540fe392b2949096501482523f8ea9b097ebc0f914998024863ae7db.exe
-
Size
780KB
-
MD5
1b428c1780a986a3bbcc124192aa7b93
-
SHA1
510c649830f823e80e001e98717d0d8c466ab9dd
-
SHA256
6a3e27b0540fe392b2949096501482523f8ea9b097ebc0f914998024863ae7db
-
SHA512
74aa103035985dc6071f472515e0f813f2a26b45658020b99e473b2f0a7816d4717f41fe67cf1e81f795f1d56017703effa5f302578a7bc16dbaf881789c8ca9
-
SSDEEP
24576:F0ZhDa7BatUBFM8su0ZjpXZN0FmEOGpYmB:FwWNFBFM8s9FpXHunB
-
Sality family
-
Disables RegEdit via registry modification
-
Disables Task Manager via registry modification
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Defense Evasion
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Impair Defenses
3Disable or Modify Tools
3Modify Registry
4