2a72f45b92b8e1eb9d1f7cd529dda7a818682148eecffc645a3a764870167f1f | Triage

Sharing

General

Target

2a72f45b92b8e1eb9d1f7cd529dda7a818682148eecffc645a3a764870167f1f
Size

386KB
Sample

191025-9gde37y1vn
MD5

bea59f16899b571261f25f3788c1f9b7
SHA1

a418834d4a1b01c930a44cb81abd254ab473a088
SHA256

2a72f45b92b8e1eb9d1f7cd529dda7a818682148eecffc645a3a764870167f1f
SHA512

1092c21bf22cb44c92dacfb28b3ab84f3001cbb08b7557bdfca4fa67ab93449cfbcf108d7c4f3c9ca8de49ba317e24a97861a7f2e9184282da856001c41e2622

Score

7^/10

Malware Config

Targets

- Target
  
  2a72f45b92b8e1eb9d1f7cd529dda7a818682148eecffc645a3a764870167f1f
- Size
  
  386KB
- MD5
  
  bea59f16899b571261f25f3788c1f9b7
- SHA1
  
  a418834d4a1b01c930a44cb81abd254ab473a088
- SHA256
  
  2a72f45b92b8e1eb9d1f7cd529dda7a818682148eecffc645a3a764870167f1f
- SHA512
  
  1092c21bf22cb44c92dacfb28b3ab84f3001cbb08b7557bdfca4fa67ab93449cfbcf108d7c4f3c9ca8de49ba317e24a97861a7f2e9184282da856001c41e2622
Score

7^/10
- Windows security modification
  evasion trojan
- Checks system information in the registry (likely anti-VM)
- Modifies service
  persistence
task1 task2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

task1

task2