ddc914db7344d1921b781bd531fb6f817e2c62d46bbe8de044c5a50b85c447dc | Triage

Sharing

General

Target

ddc914db7344d1921b781bd531fb6f817e2c62d46bbe8de044c5a50b85c447dc
Size

11.9MB
Sample

220521-esf8rscgel
MD5

424bf989354bd35196f4660534e63e62
SHA1

0cd334cfff8e399a5665db3b442db57a7960e597
SHA256

ddc914db7344d1921b781bd531fb6f817e2c62d46bbe8de044c5a50b85c447dc
SHA512

c0dfa8cb7ed2a2cb680f5abf78806475f6dcf6d761949d146841d5890f2f58182240eb78e2572b43589ea2f068c85f34fd10b220ba1a8cf8e6a483eae540ac0c

Score

6^/10

evasion trojan

Malware Config

Targets

- Target
  
  ???www.xzking.com.url
- Size
  
  302B
- MD5
  
  f6069f943715d9a180c3d138647cff0f
- SHA1
  
  d11eac1bcc2bd7ec49c3640063c5e378cd3c83fd
- SHA256
  
  5315aa654483ecb41f08131f411397c4c9629c0a01820c1dc1b5fba2ead4eb18
- SHA512
  
  96985ea678c97cff36f6258e0bb08bc1bca10a7f9cc4c6f27941dfed668795caca5bfaacf7939d608f50a234ab2954f98f00a5b1ecdb260adb9851e8cc924b76
Score

6^/10

evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2
- Target
  
  TypeEasy2010.exe
- Size
  
  12.0MB
- MD5
  
  c8a73fb9724b8e4f735768d656d28033
- SHA1
  
  dc6e57d9f57dbf722632575531408f6176bdd15d
- SHA256
  
  4488fe75b96dc1089a2e8c90ca9d9fd24ba398fc48c785141a8931aeabae2c84
- SHA512
  
  fb07cd8aa19fdf193c27da85f173f11252efe9a085510be908b2ffd75528adf6f3ffaf87403f8e907f8d8499c874f27bdcff4f2116094238b413a77aa0d4b8ff
Score

6^/10

evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral3 behavioral4
- Target
  
  readme.url
- Size
  
  328B
- MD5
  
  63ce37659e34f6542d31a4bc64ec19e5
- SHA1
  
  31938110d10a8ebce18ce02d1ebaca0e344a797c
- SHA256
  
  36dcd2cc9ef2a279014b4f85915100f62d36bd0c2cf439638d4ce0e9c18cc2ff
- SHA512
  
  39dc956c870a2bd80786dd215b503e5f22a1259bb858ff37ae601cb11d425afd5304e6472512c99afcb98569f08990e1d03df5e3d392ec484b1a98dd3f7b86e2
Score

6^/10

evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral5 behavioral6

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6