83f71770cfba923d1e8de4dc54ccb5429321467e26085788fce7b34162668e25 | Triage

Sharing

General

Target

83f71770cfba923d1e8de4dc54ccb5429321467e26085788fce7b34162668e25
Size

120KB
Sample

221126-tljsmsag3w
MD5

d550edee505e87d20bb5dcabc50812e4
SHA1

ea302cf5482451c2e6f77e89f96032dc39203ca6
SHA256

83f71770cfba923d1e8de4dc54ccb5429321467e26085788fce7b34162668e25
SHA512

cec2198e4d4d47c503f9670047dd207e76ee6b48b9046230c569457dd04d92183b93cc7d0e710590faa38b9824e7f9ef9c2007abd4745d22b34326e24764a168
SSDEEP

3072:ImjvpwkOIm1m1m1m1m1m1mP4p4YROPCM4msWHGm0H9p8yqa9uIe5AV5L1m1m1m1V:BAzkzm0YnRPI55

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  83f71770cfba923d1e8de4dc54ccb5429321467e26085788fce7b34162668e25
- Size
  
  120KB
- MD5
  
  d550edee505e87d20bb5dcabc50812e4
- SHA1
  
  ea302cf5482451c2e6f77e89f96032dc39203ca6
- SHA256
  
  83f71770cfba923d1e8de4dc54ccb5429321467e26085788fce7b34162668e25
- SHA512
  
  cec2198e4d4d47c503f9670047dd207e76ee6b48b9046230c569457dd04d92183b93cc7d0e710590faa38b9824e7f9ef9c2007abd4745d22b34326e24764a168
- SSDEEP
  
  3072:ImjvpwkOIm1m1m1m1m1m1mP4p4YROPCM4msWHGm0H9p8yqa9uIe5AV5L1m1m1m1V:BAzkzm0YnRPI55
Score

10^/10

evasion trojan
- UAC bypass
  evasion trojan
- Windows security bypass
  evasion trojan
- Drops file in Drivers directory
- Executes dropped EXE
- Drops startup file
- Loads dropped DLL
- Windows security modification
  evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Bypass User Account Control

Defense Evasion

Bypass User Account Control

Disabling Security Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2