7a5982a57c3c2e0cc3a63edb39aae08d0e21603c8c977f231a83d8867d5d3770 | Triage

Sharing

General

Target

7a5982a57c3c2e0cc3a63edb39aae08d0e21603c8c977f231a83d8867d5d3770
Size

536KB
Sample

191025-stnc2wz2ge
MD5

fd2d7bd8a9c1cca64af569883b95e2e5
SHA1

c2732e7db82920a48c2dfdab5077f3c23008ef2f
SHA256

7a5982a57c3c2e0cc3a63edb39aae08d0e21603c8c977f231a83d8867d5d3770
SHA512

9a0b2c39a4960dc3ba617f3a566792ad1d6cecf1bc8a3af2b2dbecd314926ec61397be4923477d218ac04dc2f2e366c8dab03a23099a3f7ec84f375788d05e2f

Score

7^/10

Malware Config

Targets

- Target
  
  7a5982a57c3c2e0cc3a63edb39aae08d0e21603c8c977f231a83d8867d5d3770
- Size
  
  536KB
- MD5
  
  fd2d7bd8a9c1cca64af569883b95e2e5
- SHA1
  
  c2732e7db82920a48c2dfdab5077f3c23008ef2f
- SHA256
  
  7a5982a57c3c2e0cc3a63edb39aae08d0e21603c8c977f231a83d8867d5d3770
- SHA512
  
  9a0b2c39a4960dc3ba617f3a566792ad1d6cecf1bc8a3af2b2dbecd314926ec61397be4923477d218ac04dc2f2e366c8dab03a23099a3f7ec84f375788d05e2f
Score

7^/10
- Windows security modification
  evasion trojan
- Checks system information in the registry (likely anti-VM)
- Modifies service
  persistence
task1 task2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

task1

task2