caae26cab2e32e80aeec152fcb25a62af1e29fa9b10eb47ec4ec16616300f783 | Triage

Sharing

General

Target

caae26cab2e32e80aeec152fcb25a62af1e29fa9b10eb47ec4ec16616300f783
Size

352KB
Sample

221206-cvpa2sgh22
MD5

3e3af1c59a3c3b95241e3f85afc7919b
SHA1

5502495924f4faa45c8c5c6928fd5cf90d86b5ce
SHA256

caae26cab2e32e80aeec152fcb25a62af1e29fa9b10eb47ec4ec16616300f783
SHA512

e35f90c505199a17cc7651703001ae9eaf3c335131ddaba7bb9ab6a24b679b18ad9a327ca2acbb2fe1dab29e53d20ea095f165fa5be2adfd48d2aca698768c07
SSDEEP

6144:TtYqWASxQ0rShyGlReFjbjfhyqQMRYNYoDvohAi3lFe7dk:vWDQcShyGloFjbTA1KmNo/VFidk

Score

10^/10

evasion trojan

Malware Config

Targets

- Target
  
  caae26cab2e32e80aeec152fcb25a62af1e29fa9b10eb47ec4ec16616300f783
- Size
  
  352KB
- MD5
  
  3e3af1c59a3c3b95241e3f85afc7919b
- SHA1
  
  5502495924f4faa45c8c5c6928fd5cf90d86b5ce
- SHA256
  
  caae26cab2e32e80aeec152fcb25a62af1e29fa9b10eb47ec4ec16616300f783
- SHA512
  
  e35f90c505199a17cc7651703001ae9eaf3c335131ddaba7bb9ab6a24b679b18ad9a327ca2acbb2fe1dab29e53d20ea095f165fa5be2adfd48d2aca698768c07
- SSDEEP
  
  6144:TtYqWASxQ0rShyGlReFjbjfhyqQMRYNYoDvohAi3lFe7dk:vWDQcShyGloFjbTA1KmNo/VFidk
Score

10^/10

evasion trojan
- UAC bypass
  evasion trojan
- Windows security bypass
  evasion trojan
- Disables taskbar notifications via registry modification
  evasion
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Windows security modification
  evasion trojan
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Bypass User Account Control

Defense Evasion

Bypass User Account Control

Disabling Security Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2