e8f0faef8cf72d9ca227e6cdcca8a857ced7352d69adb435f94d362d5cc5ae41 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e8f0faef8cf72d9ca227e6cdcca8a857ced7352d69adb435f94d362d5cc5ae41
Size

202KB
Sample

221203-nvjaksfh72
MD5

5cab4b7f768b7f879b33cc7f1ac7673b
SHA1

9b469532b08ebf6780a325ec7b4a6c2b650982a1
SHA256

e8f0faef8cf72d9ca227e6cdcca8a857ced7352d69adb435f94d362d5cc5ae41
SHA512

325944290d8354f935f7ac5f8d7f42a11ce323e46fef2a6f5ec10a0475c9dd9502aeecb65b6eed7c74cf3d2b064465f84cb446da6f26ec37c3488d42baf29740
SSDEEP

3072:kwFUk6OyxeyFq6I5fyOa6n5gOJU3aY24yfhFGIi27KmdNC1LEhfuWyQa:1UDsjpn5NK3n24yfhF1i27PdOE0Wy

Score

6^/10

evasion trojan

Malware Config

Targets

- Target
  
  e8f0faef8cf72d9ca227e6cdcca8a857ced7352d69adb435f94d362d5cc5ae41
- Size
  
  202KB
- MD5
  
  5cab4b7f768b7f879b33cc7f1ac7673b
- SHA1
  
  9b469532b08ebf6780a325ec7b4a6c2b650982a1
- SHA256
  
  e8f0faef8cf72d9ca227e6cdcca8a857ced7352d69adb435f94d362d5cc5ae41
- SHA512
  
  325944290d8354f935f7ac5f8d7f42a11ce323e46fef2a6f5ec10a0475c9dd9502aeecb65b6eed7c74cf3d2b064465f84cb446da6f26ec37c3488d42baf29740
- SSDEEP
  
  3072:kwFUk6OyxeyFq6I5fyOa6n5gOJU3aY24yfhFGIi27KmdNC1LEhfuWyQa:1UDsjpn5NK3n24yfhF1i27PdOE0Wy
Score

6^/10

evasion trojan
- Checks whether UAC is enabled
  evasion trojan
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2