70c2901a5bef377814da9f93e03c8ba689462273f3ec6a5cf63b8dab31242311 | Triage

Sharing

General

Target

70c2901a5bef377814da9f93e03c8ba689462273f3ec6a5cf63b8dab31242311
Size

396KB
Sample

221123-sx8qgace55
MD5

0e37d61cb00090802c0ca6ea6b0aa3ff
SHA1

f00a0626db912ded090c039fcdb3f9c02bcd9b4c
SHA256

70c2901a5bef377814da9f93e03c8ba689462273f3ec6a5cf63b8dab31242311
SHA512

73e47993b53951f0e2d038a69374f7bf777ed1facdef57f6dc65b739505e8bbd54f03dccaea83f9e1b6b9a6e47af97fef735772d0888dbc3b0645d949f478e59
SSDEEP

12288:mb7XWw1Ufy62/sz5U/4wQ0463kbSJwZT2:2TWw12usf0dUbMqS

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  70c2901a5bef377814da9f93e03c8ba689462273f3ec6a5cf63b8dab31242311
- Size
  
  396KB
- MD5
  
  0e37d61cb00090802c0ca6ea6b0aa3ff
- SHA1
  
  f00a0626db912ded090c039fcdb3f9c02bcd9b4c
- SHA256
  
  70c2901a5bef377814da9f93e03c8ba689462273f3ec6a5cf63b8dab31242311
- SHA512
  
  73e47993b53951f0e2d038a69374f7bf777ed1facdef57f6dc65b739505e8bbd54f03dccaea83f9e1b6b9a6e47af97fef735772d0888dbc3b0645d949f478e59
- SSDEEP
  
  12288:mb7XWw1Ufy62/sz5U/4wQ0463kbSJwZT2:2TWw12usf0dUbMqS
Score

10^/10

evasion trojan
- UAC bypass
  evasion trojan
- Windows security bypass
  evasion trojan
- Disables taskbar notifications via registry modification
  evasion
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Windows security modification
  evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Bypass User Account Control

Defense Evasion

Bypass User Account Control

Disabling Security Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2