67d6da7583275e7d9f3bd0bf96ded6cc41e1195b85b92061448103bb450dc440 | Triage

Sharing

General

Target

67d6da7583275e7d9f3bd0bf96ded6cc41e1195b85b92061448103bb450dc440
Size

628KB
Sample

191025-ayvgsdef6n
MD5

6a650a8827e110b0f889d1f7c9f183bf
SHA1

d20bdc3737ef88a8fd298e4257c3dc5a5aeaf174
SHA256

67d6da7583275e7d9f3bd0bf96ded6cc41e1195b85b92061448103bb450dc440
SHA512

378a381201f84eb4843fbba432802ba9acedd921f14e13ff44c4a8250814753b5f27e0e6c90c7027f32d23243348c9409f6ce8bb5422769dd65ae3afd0ab20bd

Score

7^/10

Malware Config

Targets

- Target
  
  67d6da7583275e7d9f3bd0bf96ded6cc41e1195b85b92061448103bb450dc440
- Size
  
  628KB
- MD5
  
  6a650a8827e110b0f889d1f7c9f183bf
- SHA1
  
  d20bdc3737ef88a8fd298e4257c3dc5a5aeaf174
- SHA256
  
  67d6da7583275e7d9f3bd0bf96ded6cc41e1195b85b92061448103bb450dc440
- SHA512
  
  378a381201f84eb4843fbba432802ba9acedd921f14e13ff44c4a8250814753b5f27e0e6c90c7027f32d23243348c9409f6ce8bb5422769dd65ae3afd0ab20bd
Score

7^/10
- Windows security modification
  evasion trojan
- Checks system information in the registry (likely anti-VM)
- Modifies service
  persistence
task1 task2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

task1

task2