8463a584e6cc9d88c4971255edb22b51b3b89a8b87fce207b80d1adf61d5fcce | Triage

Submit
Reports

Overview

overview

7

Static

static

payment invoice.exe

windows7_x64

7

payment invoice.exe

windows10_x64

3

Sharing

General

Target

payment invoice.exe
Size

296KB
Sample

200707-dwz1flk856
MD5

630ff7654144a9486c7553548b5c2b9c
SHA1

74ef29a37e96cedaadd988cd7d157f844b90f611
SHA256

8463a584e6cc9d88c4971255edb22b51b3b89a8b87fce207b80d1adf61d5fcce
SHA512

e833916257f1162c716922813b7aff0e942a7ec47fd9447e12757e24044c3db15cded443b0e7e1e98339ad3b4154c8818fdc73efd7c57c69fb71c935bc638ecb

Score

7^/10

evasion trojan

Static task

static1

Behavioral task

behavioral1

Sample

payment invoice.exe

Resource

win7v200430

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

payment invoice.exe

Resource

win10

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  payment invoice.exe
- Size
  
  296KB
- MD5
  
  630ff7654144a9486c7553548b5c2b9c
- SHA1
  
  74ef29a37e96cedaadd988cd7d157f844b90f611
- SHA256
  
  8463a584e6cc9d88c4971255edb22b51b3b89a8b87fce207b80d1adf61d5fcce
- SHA512
  
  e833916257f1162c716922813b7aff0e942a7ec47fd9447e12757e24044c3db15cded443b0e7e1e98339ad3b4154c8818fdc73efd7c57c69fb71c935bc638ecb
Score

7^/10

evasion trojan
- Deletes itself
- Checks whether UAC is enabled
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy