Overview

overview

7

Static

static

List Of Ap...om.exe

windows7_x64

7

List Of Ap...om.exe

windows10_x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    List Of Approved ORDER-az20021-alibaba.com.exe

  • Size

    892KB

  • Sample

    200708-zm5ry9bgya

  • MD5

    5a0e9db73acfdda619084f80fc2bf529

  • SHA1

    e33dfea14242b300c0eed79ae367c6e8eb6d36dd

  • SHA256

    e413597e7f9fd8626e543567d105edebcdb4a5cc2987cbb575d4b9044bce04f4

  • SHA512

    62cc2577353f434dd9e3158ed56940cead425be70b59b406b7f503fada8a47f4dc95f068a29ad84f9ef74bcf2fbcbcc1ca2895162f6099c38805aa64b167ed60

Score
7/10
evasiontrojan

Malware Config

Targets

    • Target

      List Of Approved ORDER-az20021-alibaba.com.exe

    • Size

      892KB

    • MD5

      5a0e9db73acfdda619084f80fc2bf529

    • SHA1

      e33dfea14242b300c0eed79ae367c6e8eb6d36dd

    • SHA256

      e413597e7f9fd8626e543567d105edebcdb4a5cc2987cbb575d4b9044bce04f4

    • SHA512

      62cc2577353f434dd9e3158ed56940cead425be70b59b406b7f503fada8a47f4dc95f068a29ad84f9ef74bcf2fbcbcc1ca2895162f6099c38805aa64b167ed60

    Score
    7/10
    evasiontrojan

    • Deletes itself

    • Checks whether UAC is enabled

      evasiontrojan

    • js

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks