Managed XDR

dttcodexgigas.f32b1e98...7d2149d0825e30f5ae162d (Conti) — malware analysis report

File info

Filename
dttcodexgigas.f32b1e98a2e498d9d27d2149d0825e30f5ae162d
File type
PE32 executable (GUI) Intel 80386, for MS Windows
File size
159.5 KB
First seen
Last seen

Environment

win7/x86 en

Hashes

SHA1
f32b1e98a2e498d9d27d2149d0825e30f5ae162d
SHA256
b98ac45afe5b4a86507ef445baa560945219c954b96a76125a3bc56c76997eac
MD5
95d277791a9485a3e5c94bb2cdecc730

Malwares

  • Conti

Signatures

Privilege Escalation

T1134 opens_process_token: Opens the access token associated with a process

Defense Evasion

T1134 opens_process_token: Opens the access token associated with a process

Other

yara_rules: Static rules
process_crashed: One of the processes has failed

Related reports