d823d3c8c26635339f3de0090fb21441f5d2f4db1a0567b2028ca8e3e7f5670e | Triage

Sharing

General

Target

Bidding of 38D OBA project.exe
Size

786KB
Sample

200708-2w91y49z42
MD5

13d24f937b11359da9f65cc862f9edbd
SHA1

0cf3e49eca8c60e6b7eb19efc2d85d0f953ee3aa
SHA256

d823d3c8c26635339f3de0090fb21441f5d2f4db1a0567b2028ca8e3e7f5670e
SHA512

1c8a2fa79e8189914ae6ed8aaf13182d99f885ac4c8b03faad2ce5f5684fb5054e24e5c04209565c63c586913bfc667e08ac816ba005f21eb8907e9861e0adc8

Score

7^/10

evasion trojan

Malware Config

Targets

- Target
  
  Bidding of 38D OBA project.exe
- Size
  
  786KB
- MD5
  
  13d24f937b11359da9f65cc862f9edbd
- SHA1
  
  0cf3e49eca8c60e6b7eb19efc2d85d0f953ee3aa
- SHA256
  
  d823d3c8c26635339f3de0090fb21441f5d2f4db1a0567b2028ca8e3e7f5670e
- SHA512
  
  1c8a2fa79e8189914ae6ed8aaf13182d99f885ac4c8b03faad2ce5f5684fb5054e24e5c04209565c63c586913bfc667e08ac816ba005f21eb8907e9861e0adc8
Score

7^/10

evasion trojan
- Deletes itself
- Checks whether UAC is enabled
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2