General
-
Target
942de49bc2304176b3eefae31a59726b3451c60fa9d0e817f3e0d79a25b15ca1
-
Size
2.4MB
-
Sample
240703-mn9crasekk
-
MD5
97f4bfce48908daf8548c94680cdd926
-
SHA1
b6921fa66184350511ffeac6f7a14308bf830928
-
SHA256
942de49bc2304176b3eefae31a59726b3451c60fa9d0e817f3e0d79a25b15ca1
-
SHA512
39ef56903b60a4a67b8863bb2ffdeed934ebe97e8223e16d7135017e20e07575e3a81076104bf37917b0ef6202a69335e66b0c137de83818fbdfb177d52b82e9
-
SSDEEP
49152:HQqiSbst0sL7R38+1uKnzzaKu4QHNHxU/lAZ1PXiEQMy2vm9ytkB4nX:xstZLNe5Hwl0kDB4n
Static task
static1
Behavioral task
behavioral1
Sample
942de49bc2304176b3eefae31a59726b3451c60fa9d0e817f3e0d79a25b15ca1.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
942de49bc2304176b3eefae31a59726b3451c60fa9d0e817f3e0d79a25b15ca1.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
942de49bc2304176b3eefae31a59726b3451c60fa9d0e817f3e0d79a25b15ca1
-
Size
2.4MB
-
MD5
97f4bfce48908daf8548c94680cdd926
-
SHA1
b6921fa66184350511ffeac6f7a14308bf830928
-
SHA256
942de49bc2304176b3eefae31a59726b3451c60fa9d0e817f3e0d79a25b15ca1
-
SHA512
39ef56903b60a4a67b8863bb2ffdeed934ebe97e8223e16d7135017e20e07575e3a81076104bf37917b0ef6202a69335e66b0c137de83818fbdfb177d52b82e9
-
SSDEEP
49152:HQqiSbst0sL7R38+1uKnzzaKu4QHNHxU/lAZ1PXiEQMy2vm9ytkB4nX:xstZLNe5Hwl0kDB4n
Score10/10-
Possible privilege escalation attempt
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies file permissions
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-
AutoIT Executable
AutoIT scripts compiled to PE executables.
-
Drops file in System32 directory
-
MITRE ATT&CK Matrix ATT&CK v13
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1