ae16f667cf5069d3e26ad7dea0bce0bbf31435f353562bfaaae425bf34868048 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ae16f667cf5069d3e26ad7dea0bce0bbf31435f353562bfaaae425bf34868048
Size

3.1MB
Sample

230106-jr97nsfd39
MD5

6e31e04f4725bd8c31ff15d95c4792a8
SHA1

a7b9c5ac8e6f24200910043194a2d832de6eaf39
SHA256

ae16f667cf5069d3e26ad7dea0bce0bbf31435f353562bfaaae425bf34868048
SHA512

852e0deea6ccb0e705b9876cda204a681b84e2d2fc2450053429d88313fd77d17962ae75ecd668725d3cae59749a6161d3c77c3487164e4198ff9cf188f0f5cc
SSDEEP

49152:ShvvdUgwAmlGg2V3Khgn6tEdO6ROxWaw4J4k3+7I4eH2HGFS0IjcFLePgL+68Kuh:SVdHlR2AO6RuWtU3QeHGpcigL6jf9

Score

8^/10

evasion trojan

Malware Config

Targets

- Target
  
  ae16f667cf5069d3e26ad7dea0bce0bbf31435f353562bfaaae425bf34868048
- Size
  
  3.1MB
- MD5
  
  6e31e04f4725bd8c31ff15d95c4792a8
- SHA1
  
  a7b9c5ac8e6f24200910043194a2d832de6eaf39
- SHA256
  
  ae16f667cf5069d3e26ad7dea0bce0bbf31435f353562bfaaae425bf34868048
- SHA512
  
  852e0deea6ccb0e705b9876cda204a681b84e2d2fc2450053429d88313fd77d17962ae75ecd668725d3cae59749a6161d3c77c3487164e4198ff9cf188f0f5cc
- SSDEEP
  
  49152:ShvvdUgwAmlGg2V3Khgn6tEdO6ROxWaw4J4k3+7I4eH2HGFS0IjcFLePgL+68Kuh:SVdHlR2AO6RuWtU3QeHGpcigL6jf9
Score

8^/10

evasion trojan
- Executes dropped EXE
- Loads dropped DLL
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2