cyborg.zip

Target

cyborg.zip

Size

3MB

Sample

200121-3tksfyztgn

Score

6 ^/10

MD5

7f109b645a93b857278ab917b561539d

SHA1

5e8533f962fa0d72ae8ff1d7cc551e43b4fec652

SHA256

2b2065128fc352aad6e5d87d6542a7d7bfea54d984c9b974458e2a5a0a89e259

SHA512

f2b5d7e05427d16fa4423f3197bbcfcb357109108b854761c1b486720c6fb9640abfac451798fb2e427d75513427d1ddabbfe2202a8c2be96dae7dd3d723c584

Target

12b92b6215b4c1dcd7ed9421ff49e540f8db08122a58fb1982ce4566b29a33d3

MD5

71fc9ca31e45809d044e70617f47e95b

Filesize

1MB

Score

6 ^/10

SHA1

df4a3733d76d96bf1a646ad4f807ab668a88a3dc

SHA256

12b92b6215b4c1dcd7ed9421ff49e540f8db08122a58fb1982ce4566b29a33d3

SHA512

2c61052a70e2fdba3083ee101221f5d51cbf99878b7063918a4b30e57ce37c12881554882bac6739c459dc64a5390f0a6e6c2a191f0024ce4963373cfc875642

Signatures

Checks whether UAC is enabled

Tags

evasion trojan

TTPs

System Information Discovery
Modifies system certificate store

Tags

evasion spyware trojan

TTPs

Install Root Certificate Modify Registry
Drops autorun.inf file

Tags

spreading trojan

TTPs

Replication Through Removable Media
Drops file in System32 directory
Sets desktop wallpaper using registry

Tags

ransomware

TTPs

Defacement Modify Registry

Related Tasks

task1 task2

Collection

Command and Control

Credential Access

Defense Evasion

Discovery

System Information Discovery

Execution

Exfiltration

Impact

Defacement

Initial Access

Lateral Movement

Replication Through Removable Media

Persistence

Privilege Escalation

task1

spreading trojan evasion spyware ransomware

6^/10

task2

ransomware spreading trojan evasion

6^/10

Tags

Signatures

Checks whether UAC is enabled

Tags

TTPs

Modifies system certificate store

Tags

TTPs

Drops autorun.inf file

Tags

TTPs

Drops file in System32 directory

Sets desktop wallpaper using registry

Tags

TTPs

Related Tasks

task1

task2