Overview

overview

10

task1

 

10

task2

 

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Exes_dd8f071fcfb80b5473bc189d7ae19e5c.jpg

  • Size

    919KB

  • Sample

    190824-k2knn7jdzj

  • MD5

    dd8f071fcfb80b5473bc189d7ae19e5c

  • SHA1

    92cc0a6d0f5a18d3817a7b8d469419ef9c1a17d1

  • SHA256

    5a44a65204e80f8abc824cee0b02b8ada9c8b2651ccd49aeda32d4e2dbdf5106

  • SHA512

    46099dabbc78bf2bb7def5acb17bcea29e2898940d5686f694b40ac0d32092f9404c5c61d8f761192fdb3aafba443f9cf960a8776d66625bac64a660f5f6597d

Score
N/A

Malware Config

Targets

    • Target

      Exes_dd8f071fcfb80b5473bc189d7ae19e5c.jpg

    • Size

      919KB

    • MD5

      dd8f071fcfb80b5473bc189d7ae19e5c

    • SHA1

      92cc0a6d0f5a18d3817a7b8d469419ef9c1a17d1

    • SHA256

      5a44a65204e80f8abc824cee0b02b8ada9c8b2651ccd49aeda32d4e2dbdf5106

    • SHA512

      46099dabbc78bf2bb7def5acb17bcea29e2898940d5686f694b40ac0d32092f9404c5c61d8f761192fdb3aafba443f9cf960a8776d66625bac64a660f5f6597d

    Score
    N/A

    • troldesh family

      family

    • Loads dropped DLL

    • Adds Run entry to start application

    task1task2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Execution through Module Load

1
T1129

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Obfuscated Files or Information

1
T1027

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks