f44bd4f0a834e5280b0be06a8001159bb70c7c574467978c3da3e5f372d980d4 | Triage

Sharing

General

Target

f44bd4f0a834e5280b0be06a8001159bb70c7c574467978c3da3e5f372d980d4
Size

352KB
Sample

221123-pxn5aacd98
MD5

f09db1c3a6550e8e8af8a9823c58bf6a
SHA1

06b1d8a7c94a6ad885cda79e50ec5101d99aa262
SHA256

f44bd4f0a834e5280b0be06a8001159bb70c7c574467978c3da3e5f372d980d4
SHA512

511f572cfa4a157b89717349c6f649e360407fa9fada4edc52a21420d1b05885da0d091be7e22b97e77f00fa1e68090ccd27268693405e7ac073e21eab51174e
SSDEEP

6144:UPtCqWASxQ0rShyGlReFjbjfhyqQMRYNYoDvohAi3lFeEALn:QWDQcShyGloFjbTA1KmNo/VFAD

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  f44bd4f0a834e5280b0be06a8001159bb70c7c574467978c3da3e5f372d980d4
- Size
  
  352KB
- MD5
  
  f09db1c3a6550e8e8af8a9823c58bf6a
- SHA1
  
  06b1d8a7c94a6ad885cda79e50ec5101d99aa262
- SHA256
  
  f44bd4f0a834e5280b0be06a8001159bb70c7c574467978c3da3e5f372d980d4
- SHA512
  
  511f572cfa4a157b89717349c6f649e360407fa9fada4edc52a21420d1b05885da0d091be7e22b97e77f00fa1e68090ccd27268693405e7ac073e21eab51174e
- SSDEEP
  
  6144:UPtCqWASxQ0rShyGlReFjbjfhyqQMRYNYoDvohAi3lFeEALn:QWDQcShyGloFjbTA1KmNo/VFAD
Score

10^/10

evasion trojan
- UAC bypass
  evasion trojan
- Windows security bypass
  evasion trojan
- Disables taskbar notifications via registry modification
  evasion
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Windows security modification
  evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Bypass User Account Control

Defense Evasion

Bypass User Account Control

Disabling Security Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2