12ef31259476e79b28bb361c80282ee205fdcd3704397a14e71291aca4058bf7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

12ef31259476e79b28bb361c80282ee205fdcd3704397a14e71291aca4058bf7
Size

352KB
Sample

221002-ly1b6abffp
MD5

7bab94bc7da1a2ea1d60d604aaadc0db
SHA1

c99a42043ff276fad51e45d0f44ba33b91a64cac
SHA256

12ef31259476e79b28bb361c80282ee205fdcd3704397a14e71291aca4058bf7
SHA512

47c2406878067073a8f338e0895ba1c25dec3516768fd933b2f29785e8e8612ab7a9a4257038c2ccaf0ef03ae70612c7c0b11199001efcb6fc714e4cbbca3e46
SSDEEP

6144:qqmx0zANEa8Li1bWlWjkoCtfwR+RwBT4M9NdX753uSUQ1sab3nQyr:qqQ08N5qAWgko8wR54aN7mwsSr

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  12ef31259476e79b28bb361c80282ee205fdcd3704397a14e71291aca4058bf7
- Size
  
  352KB
- MD5
  
  7bab94bc7da1a2ea1d60d604aaadc0db
- SHA1
  
  c99a42043ff276fad51e45d0f44ba33b91a64cac
- SHA256
  
  12ef31259476e79b28bb361c80282ee205fdcd3704397a14e71291aca4058bf7
- SHA512
  
  47c2406878067073a8f338e0895ba1c25dec3516768fd933b2f29785e8e8612ab7a9a4257038c2ccaf0ef03ae70612c7c0b11199001efcb6fc714e4cbbca3e46
- SSDEEP
  
  6144:qqmx0zANEa8Li1bWlWjkoCtfwR+RwBT4M9NdX753uSUQ1sab3nQyr:qqQ08N5qAWgko8wR54aN7mwsSr
Score

10^/10

evasion trojan
- UAC bypass
  evasion trojan
- Windows security bypass
  evasion trojan
- Disables taskbar notifications via registry modification
  evasion
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Windows security modification
  evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Bypass User Account Control

Defense Evasion

Bypass User Account Control

Disabling Security Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2