Overview

overview

7

Static

static

7

4887444aab...e9.exe

windows7-x64

7

4887444aab...e9.exe

windows10-2004-x64

7

Resubmissions

14-08-2022 23:47

220814-3s5s5abgdr 7

14-08-2022 22:16

220814-168e3adgd5 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4887444aab8abf18bf9757238b7ed8e40ba0b1d5db5c51fc694b69af963867e9

  • Size

    7.2MB

  • Sample

    220814-3s5s5abgdr

  • MD5

    83a880033ab0d346e9cdc81ab060e177

  • SHA1

    9a18f55adad011a7dfeac109ed63dbb50d02461c

  • SHA256

    4887444aab8abf18bf9757238b7ed8e40ba0b1d5db5c51fc694b69af963867e9

  • SHA512

    b84b5e6897f2fa626a0886c69caae580c4b5892248c31d6437d9d660100d21a757ce28f2db311c2ebd21fb232c010f2fd12d9e2b136737b986f14ff548f41c1b

Score
7/10
evasionthemidatrojan

Malware Config

Targets

    • Target

      4887444aab8abf18bf9757238b7ed8e40ba0b1d5db5c51fc694b69af963867e9

    • Size

      7.2MB

    • MD5

      83a880033ab0d346e9cdc81ab060e177

    • SHA1

      9a18f55adad011a7dfeac109ed63dbb50d02461c

    • SHA256

      4887444aab8abf18bf9757238b7ed8e40ba0b1d5db5c51fc694b69af963867e9

    • SHA512

      b84b5e6897f2fa626a0886c69caae580c4b5892248c31d6437d9d660100d21a757ce28f2db311c2ebd21fb232c010f2fd12d9e2b136737b986f14ff548f41c1b

    Score
    7/10
    evasionthemidatrojan

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

      themida

    • Checks whether UAC is enabled

      evasiontrojan

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks