3e2c140adef617d708a8a59ebde14b5a6d7d19dc35243232fed0a77f7752551f | Triage

Sharing

General

Target

3e2c140adef617d708a8a59ebde14b5a6d7d19dc35243232fed0a77f7752551f.exe
Size

9.5MB
Sample

211002-rfvxlsedc2
MD5

9d51a4273c4ce987faed9e51d3f37b4e
SHA1

1bb01a5ccd27840a6a7f79460e4c6eb052aa4d20
SHA256

3e2c140adef617d708a8a59ebde14b5a6d7d19dc35243232fed0a77f7752551f
SHA512

21973251c9cb2e7c340758bf11f317b79ddc20fa02bc213e4319ebcad87ae98bebd7498528322d4499efab1139040158876c97cd77c6d203641c5222368891a7

Score

10^/10

evasion persistence pyinstaller trojan

Malware Config

Targets

- Target
  
  3e2c140adef617d708a8a59ebde14b5a6d7d19dc35243232fed0a77f7752551f.exe
- Size
  
  9.5MB
- MD5
  
  9d51a4273c4ce987faed9e51d3f37b4e
- SHA1
  
  1bb01a5ccd27840a6a7f79460e4c6eb052aa4d20
- SHA256
  
  3e2c140adef617d708a8a59ebde14b5a6d7d19dc35243232fed0a77f7752551f
- SHA512
  
  21973251c9cb2e7c340758bf11f317b79ddc20fa02bc213e4319ebcad87ae98bebd7498528322d4499efab1139040158876c97cd77c6d203641c5222368891a7
Score

10^/10

evasion persistence trojan
- Registers COM server for autorun
  persistence
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
- Drops file in System32 directory
behavioral1 behavioral2 behavioral3 behavioral4 behavioral5 behavioral6 behavioral7 behavioral8

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

evasionpersistencetrojan

behavioral7

behavioral8