Overview

overview

10

task1

 

10

task2

 

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Exes_8f5275c50f0eba3d03ba9a02d958428d.10

  • Size

    1.1MB

  • Sample

    190828-5tkd2btv62

  • MD5

    8f5275c50f0eba3d03ba9a02d958428d

  • SHA1

    3bb15a817b6ba5d2f1301aa0c35b600a13b883fe

  • SHA256

    bb6f355ea11ee4a879d7c7ee97c44e06cae6021d9cb23c1df28491336662afff

  • SHA512

    ac83b10727a1d23672ea9aededb43228ac72bde1fb6ecb7c734bb50f91a0ff7c9e3a617353f9e06b38626dd34a50bdddd8dcbbc09fb7c9ed0e3839cf13a605b5

Score
N/A

Malware Config

Targets

    • Target

      Exes_8f5275c50f0eba3d03ba9a02d958428d.10

    • Size

      1.1MB

    • MD5

      8f5275c50f0eba3d03ba9a02d958428d

    • SHA1

      3bb15a817b6ba5d2f1301aa0c35b600a13b883fe

    • SHA256

      bb6f355ea11ee4a879d7c7ee97c44e06cae6021d9cb23c1df28491336662afff

    • SHA512

      ac83b10727a1d23672ea9aededb43228ac72bde1fb6ecb7c734bb50f91a0ff7c9e3a617353f9e06b38626dd34a50bdddd8dcbbc09fb7c9ed0e3839cf13a605b5

    Score
    N/A

    • troldesh family

      family

    • Loads dropped DLL

    • Adds Run entry to start application

    task1task2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Execution through Module Load

1
T1129

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Obfuscated Files or Information

1
T1027

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks