a6941755e5b2bd44d696020e8c058581380aa75a1c594bf48e6c2512863b06e8 | Triage

Sharing

General

Target

a6941755e5b2bd44d696020e8c058581380aa75a1c594bf48e6c2512863b06e8
Size

32KB
Sample

220925-g9jfkadfa3
MD5

c7e2a311a5ca80ba57a1627cf4b147ac
SHA1

171e4136d2547248cac6170dc7a8b9cfc9bd62f2
SHA256

a6941755e5b2bd44d696020e8c058581380aa75a1c594bf48e6c2512863b06e8
SHA512

1ea1d9806b7aa7dbc370c544c4e82dfc28750558c9f450c81bdc8365d61557486a7bbde13adc423ad799efbd841a396cd5939a04a9fbfa257a8307dd5688c3a4
SSDEEP

384:PQXWtTyg1fJDMVD9ORAtKT5KDBUdrZw7QSc:PgSyg9JwSRGC5eBUrZr

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  a6941755e5b2bd44d696020e8c058581380aa75a1c594bf48e6c2512863b06e8
- Size
  
  32KB
- MD5
  
  c7e2a311a5ca80ba57a1627cf4b147ac
- SHA1
  
  171e4136d2547248cac6170dc7a8b9cfc9bd62f2
- SHA256
  
  a6941755e5b2bd44d696020e8c058581380aa75a1c594bf48e6c2512863b06e8
- SHA512
  
  1ea1d9806b7aa7dbc370c544c4e82dfc28750558c9f450c81bdc8365d61557486a7bbde13adc423ad799efbd841a396cd5939a04a9fbfa257a8307dd5688c3a4
- SSDEEP
  
  384:PQXWtTyg1fJDMVD9ORAtKT5KDBUdrZw7QSc:PgSyg9JwSRGC5eBUrZr
Score

10^/10

evasion trojan
- UAC bypass
  evasion trojan
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Bypass User Account Control

Defense Evasion

Bypass User Account Control

Disabling Security Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2