General
-
Target
3b749a256a910c8a7c0e928d67739a9f60e833f05993fe8e0747a67fabc8cc3e
-
Size
732KB
-
Sample
240630-w4wk9sscke
-
MD5
35d02880cbd2859bb276bb2379cb8e10
-
SHA1
951cc4f032fd988a25b1ceda202f03797daab367
-
SHA256
3b749a256a910c8a7c0e928d67739a9f60e833f05993fe8e0747a67fabc8cc3e
-
SHA512
9f9283b6be1c00780ccd45474f2558bd32a0ff1c803ae57ae4d4fe4ab7f5c5022f88a545f9807219c902b7e49bf4580fb30612faa11fb8c1e51c6a39dd5d830d
-
SSDEEP
12288:Ei0NjlGoLZoaT3KemwubOvu5Sb44OeG3SUBFNPG4kaWH9j:EipuzT6Wuwu5Sb4XkYjPGIk9j
Static task
static1
Behavioral task
behavioral1
Sample
3b749a256a910c8a7c0e928d67739a9f60e833f05993fe8e0747a67fabc8cc3e.exe
Resource
win7-20240221-en
Malware Config
Extracted
sality
http://89.119.67.154/testo5/
http://kukutrustnet777.info/home.gif
http://kukutrustnet888.info/home.gif
http://kukutrustnet987.info/home.gif
Targets
-
-
Target
3b749a256a910c8a7c0e928d67739a9f60e833f05993fe8e0747a67fabc8cc3e
-
Size
732KB
-
MD5
35d02880cbd2859bb276bb2379cb8e10
-
SHA1
951cc4f032fd988a25b1ceda202f03797daab367
-
SHA256
3b749a256a910c8a7c0e928d67739a9f60e833f05993fe8e0747a67fabc8cc3e
-
SHA512
9f9283b6be1c00780ccd45474f2558bd32a0ff1c803ae57ae4d4fe4ab7f5c5022f88a545f9807219c902b7e49bf4580fb30612faa11fb8c1e51c6a39dd5d830d
-
SSDEEP
12288:Ei0NjlGoLZoaT3KemwubOvu5Sb44OeG3SUBFNPG4kaWH9j:EipuzT6Wuwu5Sb4XkYjPGIk9j
-
Modifies firewall policy service
-
MITRE ATT&CK Matrix ATT&CK v13
Privilege Escalation
Create or Modify System Process
1Windows Service
1Abuse Elevation Control Mechanism
1Bypass User Account Control
1