7e85d623d644d4ae359f5351c7d7e14351c9eae979adeae72837da54175f51c5 | Triage

Sharing

General

Target

7e85d623d644d4ae359f5351c7d7e14351c9eae979adeae72837da54175f51c5
Size

393KB
Sample

221123-2dr32shf45
MD5

536634676d7185dc46c3f58d04bd6560
SHA1

1f0e81cdf77f333c2973e4d72e3bc9f6c1948b26
SHA256

7e85d623d644d4ae359f5351c7d7e14351c9eae979adeae72837da54175f51c5
SHA512

47f8ce33613691c8cbed330ed05665f321c06e24710e15e91a7da2e51de792f45bf251f5c336e4b50a825a90b8fd2169fdd5716ab429a36cd1c405c06d183e84
SSDEEP

12288:n33KpJI6xj1dV9fJcEXW4OYIb5IiENCa9Kk0Cx:n3Cb1dV9fJhXWGHNYXCx

Score

10^/10

evasion persistence trojan

Malware Config

Targets

- Target
  
  7e85d623d644d4ae359f5351c7d7e14351c9eae979adeae72837da54175f51c5
- Size
  
  393KB
- MD5
  
  536634676d7185dc46c3f58d04bd6560
- SHA1
  
  1f0e81cdf77f333c2973e4d72e3bc9f6c1948b26
- SHA256
  
  7e85d623d644d4ae359f5351c7d7e14351c9eae979adeae72837da54175f51c5
- SHA512
  
  47f8ce33613691c8cbed330ed05665f321c06e24710e15e91a7da2e51de792f45bf251f5c336e4b50a825a90b8fd2169fdd5716ab429a36cd1c405c06d183e84
- SSDEEP
  
  12288:n33KpJI6xj1dV9fJcEXW4OYIb5IiENCa9Kk0Cx:n3Cb1dV9fJhXWGHNYXCx
Score

10^/10

evasion persistence trojan
- Windows security bypass
  evasion trojan
- Disables taskbar notifications via registry modification
  evasion
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Windows security modification
  evasion trojan
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistencetrojan

behavioral2