3ce29e0042c612438e9d694a7b8a66399f1367cc84911fc5cfaa52bbc72afd89 | Triage

Sharing

General

Target

3ce29e0042c612438e9d694a7b8a66399f1367cc84911fc5cfaa52bbc72afd89
Size

580KB
Sample

221204-dbesyaed6x
MD5

00f0cdcca1cda1ee6ce6d6672506ec50
SHA1

bec4b890460e03e731e48ae4c772adc019a7f4c7
SHA256

3ce29e0042c612438e9d694a7b8a66399f1367cc84911fc5cfaa52bbc72afd89
SHA512

88a2e74419ae2f2f1778ba5568b7731a02f7773d7c25f5deee71553a68a1f4223f27b367ce5bde09532c848230345a37205c5479760e5837cbc42ee3a690076a
SSDEEP

12288:jWph2x7Drf4EJRlDOVocKkaWJdacQfaTHIPT9Maj:jWX29D0cRMCKPJcfazIPe

Score

8^/10

evasion trojan

Malware Config

Targets

- Target
  
  3ce29e0042c612438e9d694a7b8a66399f1367cc84911fc5cfaa52bbc72afd89
- Size
  
  580KB
- MD5
  
  00f0cdcca1cda1ee6ce6d6672506ec50
- SHA1
  
  bec4b890460e03e731e48ae4c772adc019a7f4c7
- SHA256
  
  3ce29e0042c612438e9d694a7b8a66399f1367cc84911fc5cfaa52bbc72afd89
- SHA512
  
  88a2e74419ae2f2f1778ba5568b7731a02f7773d7c25f5deee71553a68a1f4223f27b367ce5bde09532c848230345a37205c5479760e5837cbc42ee3a690076a
- SSDEEP
  
  12288:jWph2x7Drf4EJRlDOVocKkaWJdacQfaTHIPT9Maj:jWX29D0cRMCKPJcfazIPe
Score

8^/10

evasion trojan
- Executes dropped EXE
- Loads dropped DLL
- Windows security modification
  evasion trojan
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2