e894aaa26f75cc07ecdee02a0ed31f666382ef51efe6ed41bac5e77ac3b4d9ed | Triage

Submit
Reports

Overview

overview

Static

static

e894aaa26f...ed.exe

windows7_x64

e894aaa26f...ed.exe

windows10_x64

1

Sharing

General

Target

e894aaa26f75cc07ecdee02a0ed31f666382ef51efe6ed41bac5e77ac3b4d9ed
Size

165KB
Sample

210504-wtare3rhyn
MD5

1d4c7f58efd6e23432387e97427a2507
SHA1

b0c0d9e1a3ed3d2001df17c584134f557e0f4743
SHA256

e894aaa26f75cc07ecdee02a0ed31f666382ef51efe6ed41bac5e77ac3b4d9ed
SHA512

c1cef0a1d39f417e3373dd41bdbaf3e1ce4ff569357c43bba73beb48bbc8e37fb716523cbde1fdab3f80db328fe358481da846e7c10a629ee67da7ddcd2ebc40

Score

10^/10

evasion trojan upx

Static task

static1

Behavioral task

behavioral1

Sample

e894aaa26f75cc07ecdee02a0ed31f666382ef51efe6ed41bac5e77ac3b4d9ed.exe

Resource

win7v20210408

evasion trojan upx

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

e894aaa26f75cc07ecdee02a0ed31f666382ef51efe6ed41bac5e77ac3b4d9ed.exe

Resource

win10v20210410

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  e894aaa26f75cc07ecdee02a0ed31f666382ef51efe6ed41bac5e77ac3b4d9ed
- Size
  
  165KB
- MD5
  
  1d4c7f58efd6e23432387e97427a2507
- SHA1
  
  b0c0d9e1a3ed3d2001df17c584134f557e0f4743
- SHA256
  
  e894aaa26f75cc07ecdee02a0ed31f666382ef51efe6ed41bac5e77ac3b4d9ed
- SHA512
  
  c1cef0a1d39f417e3373dd41bdbaf3e1ce4ff569357c43bba73beb48bbc8e37fb716523cbde1fdab3f80db328fe358481da846e7c10a629ee67da7ddcd2ebc40
Score

10^/10

evasion trojan upx
- Modifies firewall policy service
  evasion
- UAC bypass
  evasion trojan
- Windows security bypass
  evasion trojan
- Disables RegEdit via registry modification
  evasion
- Disables Task Manager via registry modification
  evasion
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Windows security modification
  evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Bypass User Account Control

Defense Evasion

Modify Registry

Bypass User Account Control

Disabling Security Tools

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

evasiontrojanupx

behavioral2

© 2018-2024

Terms | Privacy