ed1a371e8918f6f1dde9fad1e3edb2c984ea3704217e2bca5b2489b61d1bc56e | Triage

Sharing

General

Target

b00d56d99248f7ae074a2e8aab07c67d.exe
Size

20KB
Sample

200708-jqwd69vs5x
MD5

b00d56d99248f7ae074a2e8aab07c67d
SHA1

5f4e91de606bb79eff2f4520ecacaecf550be7a0
SHA256

ed1a371e8918f6f1dde9fad1e3edb2c984ea3704217e2bca5b2489b61d1bc56e
SHA512

edcb6bf295a43c48d57d6a9b1d30809ce2372ff11235e7302ebb954a81ae7583d49902ed88c34408e965d91b30c0ee51727ddce5799b24e9645bef02594547bb

Score

6^/10

evasion spyware trojan

Malware Config

Targets

- Target
  
  b00d56d99248f7ae074a2e8aab07c67d.exe
- Size
  
  20KB
- MD5
  
  b00d56d99248f7ae074a2e8aab07c67d
- SHA1
  
  5f4e91de606bb79eff2f4520ecacaecf550be7a0
- SHA256
  
  ed1a371e8918f6f1dde9fad1e3edb2c984ea3704217e2bca5b2489b61d1bc56e
- SHA512
  
  edcb6bf295a43c48d57d6a9b1d30809ce2372ff11235e7302ebb954a81ae7583d49902ed88c34408e965d91b30c0ee51727ddce5799b24e9645bef02594547bb
Score

6^/10

evasion spyware trojan
- Modifies system certificate store
  evasion spyware trojan
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

evasionspywaretrojan

behavioral2