8dc78a437f941fe4a02e9538a7e151192ad4f0d2822584d685cb21edad2dfdfd | Triage

Sharing

General

Target

8dc78a437f941fe4a02e9538a7e151192ad4f0d2822584d685cb21edad2dfdfd
Size

404KB
Sample

221125-1pdjcshc29
MD5

d55357305ff2b825a32cb8baf7f0a6fa
SHA1

d0c56dee3e2b655e125bd81bff16dece1c6d4530
SHA256

8dc78a437f941fe4a02e9538a7e151192ad4f0d2822584d685cb21edad2dfdfd
SHA512

4193ea0b8ecf3ab05da250c99468d4c91fb87196d736c934b4f9c3eb4014a7a2f8ff717d1b456f980a22c86d7e8bcdd41c7e63ed34efc4637040b34085ddc8a3
SSDEEP

6144:JeFCiy2pNIsOi8OfRP0GftcCCJuLQu+283EX5c9WcMiMx6zUjeHiOu6HOAqGjpM:JeFNppzZP0keJyQu+2RWNlpvq6

Score

10^/10

evasion persistence trojan

Malware Config

Targets

- Target
  
  8dc78a437f941fe4a02e9538a7e151192ad4f0d2822584d685cb21edad2dfdfd
- Size
  
  404KB
- MD5
  
  d55357305ff2b825a32cb8baf7f0a6fa
- SHA1
  
  d0c56dee3e2b655e125bd81bff16dece1c6d4530
- SHA256
  
  8dc78a437f941fe4a02e9538a7e151192ad4f0d2822584d685cb21edad2dfdfd
- SHA512
  
  4193ea0b8ecf3ab05da250c99468d4c91fb87196d736c934b4f9c3eb4014a7a2f8ff717d1b456f980a22c86d7e8bcdd41c7e63ed34efc4637040b34085ddc8a3
- SSDEEP
  
  6144:JeFCiy2pNIsOi8OfRP0GftcCCJuLQu+283EX5c9WcMiMx6zUjeHiOu6HOAqGjpM:JeFNppzZP0keJyQu+2RWNlpvq6
Score

10^/10

evasion persistence trojan
- Windows security bypass
  evasion trojan
- Disables taskbar notifications via registry modification
  evasion
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Windows security modification
  evasion trojan
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

evasionpersistencetrojan

behavioral2