e4c357a76f313b1fcc1f82edd91873ce5a01ed63cb3682bd566c03b43b71d160 | Triage

Sharing

General

Target

e4c357a76f313b1fcc1f82edd91873ce5a01ed63cb3682bd566c03b43b71d160
Size

414KB
Sample

221125-ztdjgshf21
MD5

3724f59f2587ba0d5886efe4d851e636
SHA1

df79f259e6591a7e71c9368d290415d983550098
SHA256

e4c357a76f313b1fcc1f82edd91873ce5a01ed63cb3682bd566c03b43b71d160
SHA512

e3c243bdc6332ff1c370785eb383bca50a68bae2432f68d676bce01fed08502c0be428d3ab81af91610fb3460e509542b9980ce28c1c2347c525082652508a17
SSDEEP

12288:6Xqx6szVsRmQ5q+/+njJdhrTgLMK42WKzdQn:6CxamQ5q+/+baYah

Score

7^/10

evasion trojan

Malware Config

Targets

- Target
  
  e4c357a76f313b1fcc1f82edd91873ce5a01ed63cb3682bd566c03b43b71d160
- Size
  
  414KB
- MD5
  
  3724f59f2587ba0d5886efe4d851e636
- SHA1
  
  df79f259e6591a7e71c9368d290415d983550098
- SHA256
  
  e4c357a76f313b1fcc1f82edd91873ce5a01ed63cb3682bd566c03b43b71d160
- SHA512
  
  e3c243bdc6332ff1c370785eb383bca50a68bae2432f68d676bce01fed08502c0be428d3ab81af91610fb3460e509542b9980ce28c1c2347c525082652508a17
- SSDEEP
  
  12288:6Xqx6szVsRmQ5q+/+njJdhrTgLMK42WKzdQn:6CxamQ5q+/+baYah
Score

7^/10

evasion trojan
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2