8a44c7afbb4d00b448c57765477df5c4f5a8df7dbb85a2ff746ec8dc9457481f | Triage

Sharing

General

Target

Exes_95a73842672ac3f89618c5db39497de1.3
Size

1.1MB
Sample

190814-x92khptqbs
MD5

95a73842672ac3f89618c5db39497de1
SHA1

95115e368680cc555211cfbfb1f84f9d3f2dee48
SHA256

8a44c7afbb4d00b448c57765477df5c4f5a8df7dbb85a2ff746ec8dc9457481f
SHA512

f24ad0aab800d23d5641283901bb39c1599b1bce9eda2bf62b9a29805827cfe9be3a8bf48127f64dd84c544877050081207d878715a3df39b631728760541529

Score

N/A

Malware Config

Targets

- Target
  
  Exes_95a73842672ac3f89618c5db39497de1.3
- Size
  
  1.1MB
- MD5
  
  95a73842672ac3f89618c5db39497de1
- SHA1
  
  95115e368680cc555211cfbfb1f84f9d3f2dee48
- SHA256
  
  8a44c7afbb4d00b448c57765477df5c4f5a8df7dbb85a2ff746ec8dc9457481f
- SHA512
  
  f24ad0aab800d23d5641283901bb39c1599b1bce9eda2bf62b9a29805827cfe9be3a8bf48127f64dd84c544877050081207d878715a3df39b631728760541529
Score

N/A
- troldesh family
  family
- Loads dropped DLL
- Adds Run entry to start application
task1 task2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Execution through Module Load

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Obfuscated Files or Information

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

task1

task2